CVE-2014-6120

CRITICAL

IBM Security AppScan Source Remote Command Execution

Title source: llm

Description

IBM Rational AppScan Source 8.0 through 8.0.0.2 and 8.5 through 8.5.0.1 and Security AppScan Source 8.6 through 8.6.0.2, 8.7 through 8.7.0.1, 8.8, 9.0 through 9.0.0.1, and 9.0.1 allow remote attackers to execute arbitrary commands on the installation server via unspecified vectors. IBM X-Force ID: 96721.

References (1)

Core 1

Core References

VDB Entry, Vendor Advisory vdb-entry x_refsource_xf

https://exchange.xforce.ibmcloud.com/vulnerabilities/96721

Scores

CVSS v3 9.8

EPSS 0.0511

EPSS Percentile 91.3%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-77

Status published

Products (14)

ibm/rational_appscan_source 8.0.0.0

ibm/rational_appscan_source 8.0.0.1

ibm/rational_appscan_source 8.0.0.2

ibm/rational_appscan_source 8.5.0.0

ibm/rational_appscan_source 8.5.0.1

ibm/security_appscan_source 8.6.0.0

ibm/security_appscan_source 8.6.0.1

ibm/security_appscan_source 8.6.0.2

ibm/security_appscan_source 8.7

ibm/security_appscan_source 8.7.0.1

... and 4 more

Published Apr 12, 2018

Tracked Since Feb 18, 2026