The update process in IBM Security AppScan Standard 7.9 up to and including 8.8 does not require integrity checks of downloaded files, which allows remote malicious users to execute arbitrary code via a crafted file.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
ibm security appscan 8.7 |
||
ibm security appscan 8.5 |
||
ibm security appscan 7.9 |
||
ibm security appscan 8.6 |
||
ibm security appscan 8.8 |
||
ibm security appscan 8.0 |