CVE-2014-6120: Command Injection
First published: Thu Apr 12 2018(Updated: )
IBM Rational AppScan Source 8.0 through 8.0.0.2 and 8.5 through 8.5.0.1 and Security AppScan Source 8.6 through 8.6.0.2, 8.7 through 8.7.0.1, 8.8, 9.0 through 9.0.0.1, and 9.0.1 allow remote attackers to execute arbitrary commands on the installation server via unspecified vectors. IBM X-Force ID: 96721.
Credit: psirt@us.ibm.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| HCL AppScan Source | =8.0.0.0 | |
| HCL AppScan Source | =8.0.0.1 | |
| HCL AppScan Source | =8.0.0.2 | |
| HCL AppScan Source | =8.5.0.0 | |
| HCL AppScan Source | =8.5.0.1 | |
| HCL AppScan Source | =8.6.0.0 | |
| HCL AppScan Source | =8.6.0.1 | |
| HCL AppScan Source | =8.6.0.2 | |
| HCL AppScan Source | =8.7 | |
| HCL AppScan Source | =8.7.0.1 | |
| HCL AppScan Source | =8.8 | |
| HCL AppScan Source | =9.0.0.0 | |
| HCL AppScan Source | =9.0.0.1 | |
| HCL AppScan Source | =9.0.1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/author
- agent/weakness
- agent/severity
- agent/last-modified-date
- agent/references
- agent/first-publish-date
- agent/event
- agent/description
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/ibm
- canonical/hcl appscan source
- version/hcl appscan source/8.0.0.0
- version/hcl appscan source/8.0.0.1
- version/hcl appscan source/8.0.0.2
- version/hcl appscan source/8.5.0.0
- version/hcl appscan source/8.5.0.1
- version/hcl appscan source/8.6.0.0
- version/hcl appscan source/8.6.0.1
- version/hcl appscan source/8.6.0.2
- version/hcl appscan source/8.7
- version/hcl appscan source/8.7.0.1
- version/hcl appscan source/8.8
- version/hcl appscan source/9.0.0.0
- version/hcl appscan source/9.0.0.1
- version/hcl appscan source/9.0.1