CVE-2011-1366

3 documents3 sources

Severity

8.8HIGH

EPSS

1.0%

top 23.32%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

IBM Rational Appscan

Timeline

PublishedOct 30

Latest updateMay 17

Description

Unspecified vulnerability in the Import feature in IBM Rational AppScan Enterprise and AppScan Reporting Console 5.2 through 7.9.x and 8.x before 8.0.1.1 allows remote attackers to execute arbitrary commands on an agent server via a crafted ZIP archive.

CVSS vector

AV:N/AC:M/C:N/I:C/A:CExploitability: 8.6 | Impact: 9.2

Affected Packages1 packages

▶NVDibm/rational_appscan23 versions+22

🔴Vulnerability Details

GHSA

GHSA-63f9-cj55-4rmw: Unspecified vulnerability in the Import feature in IBM Rational AppScan Enterprise and AppScan Reporting Console 5↗2022-05-17

▶

CVEList

CVE-2011-1366: Unspecified vulnerability in the Import feature in IBM Rational AppScan Enterprise and AppScan Reporting Console 5↗2011-10-30

▶