CVE-2014-6120

{"id": "CVE-2014-6120", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 10.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "authentication": "NONE", "integrityImpact": "COMPLETE", "accessComplexity": "LOW", "availabilityImpact": "COMPLETE", "confidentialityImpact": "COMPLETE"}, "acInsufInfo": false, "impactScore": 10.0, "baseSeverity": "HIGH", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}], "cvssMetricV30": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.0", "baseScore": 9.8, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 3.9}]}, "published": "2018-04-12T21:29:00.223", "references": [{"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/96721", "tags": ["VDB Entry", "Vendor Advisory"], "source": "psirt@us.ibm.com"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/96721", "tags": ["VDB Entry", "Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-77"}]}], "descriptions": [{"lang": "en", "value": "IBM Rational AppScan Source 8.0 through 8.0.0.2 and 8.5 through 8.5.0.1 and Security AppScan Source 8.6 through 8.6.0.2, 8.7 through 8.7.0.1, 8.8, 9.0 through 9.0.0.1, and 9.0.1 allow remote attackers to execute arbitrary commands on the installation server via unspecified vectors. IBM X-Force ID: 96721."}, {"lang": "es", "value": "IBM Rational AppScan Source 8.0 hasta la versi\u00f3n 8.0.0.2 y 8.5 hasta la versi\u00f3n 8.5.0.1; y Security AppScan Source 8.6 hasta la versi\u00f3n 8.6.0.2, 8.7 hasta la versi\u00f3n 8.7.0.1, 8.8, 9.0 hasta la versi\u00f3n 9.0.0.1 y 9.0.1 permiten que atacantes remotos ejecuten comandos arbitrarios en el servidor de instalaci\u00f3n mediante vectores sin especificar. IBM X-Force ID: 96721."}], "lastModified": "2024-11-21T02:13:48.747", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:ibm:rational_appscan_source:8.0.0.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "733A304C-3BF9-4B80-A870-7165919CE19F"}, {"criteria": "cpe:2.3:a:ibm:rational_appscan_source:8.0.0.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FBD5AF6C-B52F-4410-95CC-9B0BAEDA941E"}, {"criteria": "cpe:2.3:a:ibm:rational_appscan_source:8.0.0.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "00754250-A540-494B-B10F-57C67D179411"}, {"criteria": "cpe:2.3:a:ibm:rational_appscan_source:8.5.0.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F4201B2D-D338-4FC0-BB98-6980B37DCA1F"}, {"criteria": "cpe:2.3:a:ibm:rational_appscan_source:8.5.0.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9D3DEE26-0A07-4AF7-815D-CFCD9B22A043"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:ibm:security_appscan_source:8.6.0.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "640A76CD-7A8C-4961-B07A-EC89F7CFCDBF"}, {"criteria": "cpe:2.3:a:ibm:security_appscan_source:8.6.0.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "01378605-9438-4967-82CD-1849FADD3C60"}, {"criteria": "cpe:2.3:a:ibm:security_appscan_source:8.6.0.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0650525D-E729-4354-A882-7A30D366D629"}, {"criteria": "cpe:2.3:a:ibm:security_appscan_source:8.7:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B205BA6C-A211-4D1D-B342-598B3057B642"}, {"criteria": "cpe:2.3:a:ibm:security_appscan_source:8.7.0.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E1D7784D-5DAA-455F-84D1-E97F6BD2357E"}, {"criteria": "cpe:2.3:a:ibm:security_appscan_source:8.8:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7E024F44-EC78-472F-B186-DF5E882D1217"}, {"criteria": "cpe:2.3:a:ibm:security_appscan_source:9.0.0.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "ACCB614F-E5CC-4D1F-B7F8-D6B7221F0741"}, {"criteria": "cpe:2.3:a:ibm:security_appscan_source:9.0.0.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A675CE2C-9B2D-43A2-BAC5-C7644F1E08CD"}, {"criteria": "cpe:2.3:a:ibm:security_appscan_source:9.0.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0CDCE5EF-CD70-4B37-818F-226BDC458233"}], "operator": "OR"}]}], "sourceIdentifier": "psirt@us.ibm.com"}