CVE-2014-6135

IBM Security Appscan - Improper Input Validation

Title source: rule
STIX 2.1

Description

IBM Security AppScan Enterprise 8.5 before 8.5 IFix 002, 8.6 before 8.6 IFix 004, 8.7 before 8.7 IFix 004, 8.8 before 8.8 iFix 003, 9.0 before 9.0.0.1 iFix 003, and 9.0.1 before 9.0.1 iFix 001 allows remote attackers to conduct clickjacking attacks via unspecified vectors.

References (3)

Core 3
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id/1031427
Vendor Advisory x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?uid=swg21693035
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/96815

Scores

EPSS 0.0117
EPSS Percentile 63.6%

Details

CWE
CWE-20
Status published
Products (7)
ibm/security_appscan 8.5
ibm/security_appscan 8.6
ibm/security_appscan 8.7
ibm/security_appscan 8.8
ibm/security_appscan 9.0
ibm/security_appscan 9.0.0.1
ibm/security_appscan_source 9.0.1
Published Dec 23, 2014
Tracked Since Feb 18, 2026