CVE-2016-9981

Опубликовано: 02 авг. 2017

Источник: nvd

CVSS3: 8.1

CVSS2: 6.8

EPSS Низкий

Описание

IBM AppScan Enterprise Edition 9.0 contains an unspecified vulnerability that could allow an attacker to hijack a valid user's session. IBM X-Force ID: 120257

Ссылки

http://www.ibm.com/support/docview.wss?uid=swg22006430
Patch
Vendor Advisory
http://www.securitytracker.com/id/1039073
Third Party Advisory
VDB Entry
https://exchange.xforce.ibmcloud.com/vulnerabilities/120257
VDB Entry
Vendor Advisory
http://www.ibm.com/support/docview.wss?uid=swg22006430
Patch
Vendor Advisory
http://www.securitytracker.com/id/1039073
Third Party Advisory
VDB Entry
https://exchange.xforce.ibmcloud.com/vulnerabilities/120257
VDB Entry
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:ibm:security_appscan:9.0.0.0:*:*:*:enterprise:*:*:*

cpe:2.3:a:ibm:security_appscan:9.0.0.1:*:*:*:enterprise:*:*:*

cpe:2.3:a:ibm:security_appscan:9.0.1.0:*:*:*:enterprise:*:*:*

cpe:2.3:a:ibm:security_appscan:9.0.1.1:*:*:*:enterprise:*:*:*

cpe:2.3:a:ibm:security_appscan:9.0.2.0:*:*:*:enterprise:*:*:*

cpe:2.3:a:ibm:security_appscan:9.0.2.1:*:*:*:enterprise:*:*:*

cpe:2.3:a:ibm:security_appscan:9.0.3.0:*:*:*:enterprise:*:*:*

cpe:2.3:a:ibm:security_appscan:9.0.3.1:*:*:*:enterprise:*:*:*

cpe:2.3:a:ibm:security_appscan:9.0.3.4:*:*:*:enterprise:*:*:*

cpe:2.3:a:ibm:security_appscan:9.0.3.5:*:*:*:enterprise:*:*:*

EPSS

Процентиль: 63%

0.00452

Низкий

8.1 High

CVSS3

6.8 Medium

CVSS2

Дефекты

CWE-384

Связанные уязвимости

GHSA-f593-4hhx-9hc7