Unrated severityNVD Advisory· Published May 3, 2012· Updated Apr 29, 2026
CVE-2012-0732
CVE-2012-0732
Description
The Enterprise Console client in IBM Rational AppScan Enterprise 5.x and 8.x before 8.5.0.1 does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
Affected products
15cpe:2.3:a:ibm:rational_appscan:5.2:*:enterprise:*:*:*:*:*+ 14 more
- cpe:2.3:a:ibm:rational_appscan:5.2:*:enterprise:*:*:*:*:*
- cpe:2.3:a:ibm:rational_appscan:5.4:*:enterprise:*:*:*:*:*
- cpe:2.3:a:ibm:rational_appscan:5.5.0:*:enterprise:*:*:*:*:*
- cpe:2.3:a:ibm:rational_appscan:5.5.0.1:*:enterprise:*:*:*:*:*
- cpe:2.3:a:ibm:rational_appscan:5.5.0.2:*:enterprise:*:*:*:*:*
- cpe:2.3:a:ibm:rational_appscan:5.6.0:*:enterprise:*:*:*:*:*
- cpe:2.3:a:ibm:rational_appscan:5.6.0.3:*:enterprise:*:*:*:*:*
- cpe:2.3:a:ibm:rational_appscan:8.0.0:*:enterprise:*:*:*:*:*
- cpe:2.3:a:ibm:rational_appscan:8.0.0.1:*:enterprise:*:*:*:*:*
- cpe:2.3:a:ibm:rational_appscan:8.0.0.2:*:enterprise:*:*:*:*:*
- cpe:2.3:a:ibm:rational_appscan:8.0.0.3:*:enterprise:*:*:*:*:*
- cpe:2.3:a:ibm:rational_appscan:8.0.1:*:enterprise:*:*:*:*:*
- cpe:2.3:a:ibm:rational_appscan:8.0.1.1:*:enterprise:*:*:*:*:*
- cpe:2.3:a:ibm:rational_appscan:8.5.0:*:enterprise:*:*:*:*:*
- cpe:2.3:a:ibm:rational_appscan:8.5.0.0:*:enterprise:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
5- secunia.com/advisories/48967nvdVendor Advisory
- secunia.com/advisories/48968nvdVendor Advisory
- www.ibm.com/support/docview.wssnvdVendor Advisory
- www.securityfocus.com/bid/53247nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/74389nvd
News mentions
0No linked articles in our index yet.