Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
appscan vulnerabilities and exploits
(subscribe to this query)
8.1
CVSSv3
CVE-2016-3033
IBM AppScan Source 8.7 up to and including 9.0.3.3 allows remote authenticated users to read arbitrary files or cause a denial of service (memory consumption) via an XML document containing an external entity declaration in conjunction with an entity reference, related to an XML ...
Ibm Appscan Source 9.0.0.1
Ibm Appscan Source 9.0.2
Ibm Appscan Source 9.0.3.1
Ibm Appscan Source 9.0.3.2
Ibm Appscan Source 9.0.3.3
Ibm Appscan Source 8.7
Ibm Appscan Source 8.7.0.1
Ibm Appscan Source 8.8
Ibm Appscan Source 9.0
Ibm Appscan Source 9.0.1
Ibm Appscan Source 9.0.3
8.1
CVSSv3
CVE-2016-9981
IBM AppScan Enterprise Edition 9.0 contains an unspecified vulnerability that could allow an malicious user to hijack a valid user's session. IBM X-Force ID: 120257
Ibm Security Appscan 9.0.0.0
Ibm Security Appscan 9.0.0.1
Ibm Security Appscan 9.0.1.0
Ibm Security Appscan 9.0.1.1
Ibm Security Appscan 9.0.2.0
Ibm Security Appscan 9.0.3.4
Ibm Security Appscan 9.0.2.1
Ibm Security Appscan 9.0.3.1
Ibm Security Appscan 9.0.3.5
Ibm Security Appscan 9.0.3.0
NA
CVE-2011-1367
Unspecified vulnerability in the File Load feature in IBM Rational AppScan Standard and Express 7.8.x, 7.9.x, and 8.0.x prior to 8.0.0.3 allows remote malicious users to execute arbitrary commands via a crafted .scan file.
Ibm Rational Appscan 7.9.0
Ibm Rational Appscan 7.9.0.1
Ibm Rational Appscan 7.9.0.2
Ibm Rational Appscan 7.8.0.1
Ibm Rational Appscan 7.8.0.2
Ibm Rational Appscan 7.8.0
Ibm Rational Appscan 8.0.0.1
Ibm Rational Appscan 8.0.0.2
Ibm Rational Appscan 7.9.0.3
Ibm Rational Appscan 8.0.0
7.3
CVSSv3
CVE-2016-6042
IBM AppScan Enterprise Edition could allow a remote malicious user to execute arbitrary code on the system, caused by improper handling of objects in memory. By persuading a victim to open specially-crafted content, an attacker could exploit this vulnerability to execute arbitrar...
Ibm Security Appscan 9.0.3.1
Ibm Security Appscan 9.0.3.0
Ibm Security Appscan 9.0.2.1
Ibm Security Appscan 9.0.2.0
Ibm Security Appscan 9.0.1.0
Ibm Security Appscan 9.0.0.0
Ibm Security Appscan 9.0.1.1
Ibm Security Appscan 9.0.0.1
NA
CVE-2013-5450
IBM Security AppScan Enterprise 8.5 up to and including 8.7.0.1, when Jazz authentication is enabled, allows man-in-the-middle malicious users to obtain sensitive information or modify data by leveraging an improperly protected URL to obtain a session token.
Ibm Security Appscan 8.7.0.0
Ibm Security Appscan 8.7.0.1
Ibm Security Appscan 8.5.0.0
Ibm Security Appscan 8.5.0.1
Ibm Security Appscan 8.6.0.0
Ibm Security Appscan 8.6.0.1
Ibm Security Appscan 8.6.0.2
5.4
CVSSv3
CVE-2015-1952
Cross-site scripting (XSS) vulnerability in IBM AppScan Enterprise Edition 9.0.x prior to 9.0.2 iFix 001 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors. IBM X-Force ID: 103416.
Ibm Security Appscan 8.5.0.0
Ibm Security Appscan 8.7.0.0
Ibm Security Appscan 9.0.0.0
Ibm Security Appscan 9.0.1.0
Ibm Security Appscan 9.0.2.0
Ibm Security Appscan 8.6.0.0
Ibm Security Appscan 8.8.0.0
NA
CVE-2014-4812
The installer in IBM Security AppScan Source 8.x and 9.x up to and including 9.0.1 has an open network port for a debug service, which allows remote malicious users to obtain sensitive information by connecting to this port.
Ibm Security Appscan Source 8.5.0.1
Ibm Security Appscan Source 8.6
Ibm Security Appscan Source 8.6.0.1
Ibm Security Appscan Source 9.0.0.1
Ibm Security Appscan Source 9.0.1
Ibm Security Appscan Source 8.0.0.2
Ibm Security Appscan Source 8.5
Ibm Security Appscan Source 8.8
Ibm Security Appscan Source 9.0
Ibm Security Appscan Source 8.6.0.2
Ibm Security Appscan Source 8.7
Ibm Security Appscan Source 8.0
Ibm Security Appscan Source 8.0.0.1
Ibm Security Appscan Source 8.7.0.0
Ibm Security Appscan Source 8.7.0.1
NA
CVE-2014-6122
IBM Security AppScan Enterprise 8.5 prior to 8.5 IFix 002, 8.6 prior to 8.6 IFix 004, 8.7 prior to 8.7 IFix 004, 8.8 prior to 8.8 iFix 003, 9.0 prior to 9.0.0.1 iFix 003, and 9.0.1 prior to 9.0.1 iFix 001 allows remote authenticated users to write to arbitrary folders, and conseq...
Ibm Security Appscan Source 9.0.1
Ibm Security Appscan 8.8
Ibm Security Appscan 9.0
Ibm Security Appscan 9.0.0.1
Ibm Security Appscan 8.6
Ibm Security Appscan 8.7
Ibm Security Appscan 8.5
NA
CVE-2014-6119
IBM Security AppScan Enterprise 8.5 prior to 8.5 IFix 002, 8.6 prior to 8.6 IFix 004, 8.7 prior to 8.7 IFix 004, 8.8 prior to 8.8 iFix 003, 9.0 prior to 9.0.0.1 iFix 003, and 9.0.1 prior to 9.0.1 iFix 001 allows remote malicious users to execute arbitrary code via a crafted execu...
Ibm Security Appscan 8.6
Ibm Security Appscan 8.7
Ibm Security Appscan 8.8
Ibm Security Appscan 9.0
Ibm Security Appscan 8.5
Ibm Security Appscan 9.0.0.1
Ibm Security Appscan Source 9.0.1
NA
CVE-2014-6121
Cross-site scripting (XSS) vulnerability in IBM Security AppScan Enterprise 8.5 prior to 8.5 IFix 002, 8.6 prior to 8.6 IFix 004, 8.7 prior to 8.7 IFix 004, 8.8 prior to 8.8 iFix 003, 9.0 prior to 9.0.0.1 iFix 003, and 9.0.1 prior to 9.0.1 iFix 001 allows remote authenticated use...
Ibm Security Appscan 8.6
Ibm Security Appscan 8.7
Ibm Security Appscan 8.8
Ibm Security Appscan 9.0
Ibm Security Appscan 9.0.0.1
Ibm Security Appscan 8.5
Ibm Security Appscan Source 9.0.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3400
CVE-2023-7252
CVE-2024-21111
denial of service
CVE-2024-29661
CVE-2024-22856
remote attackers
encryption
CVE-2023-38299
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »