PT-2014-6132 · Ibm · Ibm Security Appscan Source

Publicado

2014-10-26

Atualizado

2017-08-29

CVE-2014-4812

CVSS v2.0

1.8

Baixa

Vetor

AV:A/AC:H/Au:N/C:P/I:N/A:N

Name of the Vulnerable Software and Affected Versions IBM Security AppScan Source versions 8.x through 9.0.1

Description The issue concerns an open network port for a debug service in the installer, which can be exploited by remote attackers to obtain sensitive information by connecting to this port.

Recommendations For IBM Security AppScan Source versions 8.x through 9.0.1, consider disabling the debug service to prevent unauthorized access until a patch is available. Restrict access to the affected network port to minimize the risk of exploitation.

Correção

Information Disclosure

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-200

Identificadores relacionados

CVE-2014-4812

Produtos afetados

Ibm Security Appscan Source

PT-2014-6132 · Ibm · Ibm Security Appscan Source

CVE-2014-4812

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 3