Дата обнаружения
|
01/06/2016 |
Уровень угрозы
|
Warning |
Описание
|
An unspecified vulnerability were found in IBM Security AppScan. By exploiting these vulnerability malicious users can obtain sensitive information. This vulnerability can be exploited by remote authenticated user via a specially crafted XML document. Technical details To exploit this vulnerability malicious user has to craft an XML document containing an external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue. |
Пораженные продукты
|
IBM Security AppScan 8.7.x |
Решение
|
Update to the latest version |
Оказываемое влияние
?
|
OSI
[?]
|
Связанные продукты
|
IBM Security AppScan (formerly IBM Rational AppScan) |
CVE-IDS
|
|
Узнай статистику распространения уязвимостей в твоем регионе |