Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
IBM Security AppScan Enterprise 8.5 before 8.5 IFix 002, 8.6 before 8.6 IFix 004, 8.7 before 8.7 IFix 004, 8.8 before 8.8 iFix 003, 9.0 before 9.0.0.1 iFix 003, and 9.0.1 before 9.0.1 iFix 001 allows remote authenticated users to write to arbitrary folders, and consequently execute arbitrary commands, via a modified argument.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
IBM Security AppScan Enterprise 权限许可和访问控制漏洞
Vulnerability Description
IBM Security AppScan Enterprise(前称IBM Rational AppScan Enterprise)是美国IBM公司的一套Web应用安全测试解决方案。该方案支持同时扫描多个Web应用、生成漏洞报告以及智能化修补等。 IBM Security AppScan Enterprise中存在安全漏洞。远程攻击者可借助修改的参数利用该漏洞写入任意文件夹,执行任意命令。以下版本受到影响:IBM Security AppScan Enterprise 8.5版本,8.6版本,8.7版本,
CVSS Information
N/A
Vulnerability Type
N/A