CVE-2014-6119

CWE-94Code Injection3 documents3 sources
Severity
9.3CRITICAL
EPSS
9.9%
top 6.97%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
IBM Security AppscanIBM Security Appscan Source
Timeline
PublishedDec 23
Latest updateMay 17

Description

IBM Security AppScan Enterprise 8.5 before 8.5 IFix 002, 8.6 before 8.6 IFix 004, 8.7 before 8.7 IFix 004, 8.8 before 8.8 iFix 003, 9.0 before 9.0.0.1 iFix 003, and 9.0.1 before 9.0.1 iFix 001 allows remote attackers to execute arbitrary code via a crafted executable file in an archive.

CVSS vector

AV:N/AC:M/C:C/I:C/A:CExploitability: 8.6 | Impact: 10.0

Affected Packages2 packages

NVDibm/security_appscan6 versions+5

🔴Vulnerability Details

2
GHSA
GHSA-49hw-3r7r-q342: IBM Security AppScan Enterprise 82022-05-17
CVEList
CVE-2014-6119: IBM Security AppScan Enterprise 82014-12-23
CVE-2014-6119 (CRITICAL CVSS 9.3) | IBM Security AppScan Enterprise 8.5 | cvebase.io