exploitDog

CVE-2014-6135

Опубликовано: 23 дек. 2014

Источник: nvd

CVSS2: 4.3

EPSS Низкий

Описание

IBM Security AppScan Enterprise 8.5 before 8.5 IFix 002, 8.6 before 8.6 IFix 004, 8.7 before 8.7 IFix 004, 8.8 before 8.8 iFix 003, 9.0 before 9.0.0.1 iFix 003, and 9.0.1 before 9.0.1 iFix 001 allows remote attackers to conduct clickjacking attacks via unspecified vectors.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:ibm:security_appscan:8.5:*:*:*:enterprise:*:*:*

cpe:2.3:a:ibm:security_appscan:8.6:*:*:*:enterprise:*:*:*

cpe:2.3:a:ibm:security_appscan:8.7:*:*:*:enterprise:*:*:*

cpe:2.3:a:ibm:security_appscan:8.8:*:*:*:enterprise:*:*:*

cpe:2.3:a:ibm:security_appscan:9.0:*:*:*:enterprise:*:*:*

cpe:2.3:a:ibm:security_appscan:9.0.0.1:*:*:*:enterprise:*:*:*

cpe:2.3:a:ibm:security_appscan_source:9.0.1:*:*:*:enterprise:*:*:*

EPSS

Процентиль: 48%

0.00246

Низкий

4.3 Medium

CVSS2

Дефекты

CWE-20

Связанные уязвимости

GHSA-xvc3-gx4p-pvr6

github

больше 3 лет назад

IBM Security AppScan Enterprise 8.5 before 8.5 IFix 002, 8.6 before 8.6 IFix 004, 8.7 before 8.7 IFix 004, 8.8 before 8.8 iFix 003, 9.0 before 9.0.0.1 iFix 003, and 9.0.1 before 9.0.1 iFix 001 allows remote attackers to conduct clickjacking attacks via unspecified vectors.

EPSS

Процентиль: 48%

0.00246

Низкий

4.3 Medium

CVSS2

Дефекты

CWE-20