IBM Security AppScan Standard 8.x and 9.x before 9.0.1.1 FP1 supports unencrypted sessions, which allows remote attackers to obtain sensitive information by sniffing the network.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Security_appscan | Ibm | 8.0.0.0 (including) | 8.0.0.0 (including) |
Security_appscan | Ibm | 8.0.0.1 (including) | 8.0.0.1 (including) |
Security_appscan | Ibm | 8.0.0.2 (including) | 8.0.0.2 (including) |
Security_appscan | Ibm | 8.0.0.3 (including) | 8.0.0.3 (including) |
Security_appscan | Ibm | 8.5.0.0 (including) | 8.5.0.0 (including) |
Security_appscan | Ibm | 8.5.0.1 (including) | 8.5.0.1 (including) |
Security_appscan | Ibm | 8.6.0.0 (including) | 8.6.0.0 (including) |
Security_appscan | Ibm | 8.6.0.1 (including) | 8.6.0.1 (including) |
Security_appscan | Ibm | 8.7.0.0 (including) | 8.7.0.0 (including) |
Security_appscan | Ibm | 8.7.0.1 (including) | 8.7.0.1 (including) |
Security_appscan | Ibm | 8.8.0.0 (including) | 8.8.0.0 (including) |
Security_appscan | Ibm | 9.0.0.0 (including) | 9.0.0.0 (including) |
Security_appscan | Ibm | 9.0.0.1 (including) | 9.0.0.1 (including) |
Security_appscan | Ibm | 9.0.1.0 (including) | 9.0.1.0 (including) |
Security_appscan | Ibm | 9.0.1.1 (including) | 9.0.1.1 (including) |