VYPR

AppScan Source

by IBM

CVEs (3)

  • CVE-2016-3033HigDec 1, 2016
    risk 0.53cvss 8.1epss 0.01

    IBM AppScan Source 8.7 through 9.0.3.3 allows remote authenticated users to read arbitrary files or cause a denial of service (memory consumption) via an XML document containing an external entity declaration in conjunction with an entity reference, related to an XML External…

  • CVE-2016-3035MedFeb 1, 2017
    risk 0.35cvss 5.3epss 0.01

    IBM AppScan Source could reveal some sensitive information through the browsing of testlinks on the server.

  • CVE-2016-3034MedFeb 1, 2017
    risk 0.29cvss 4.4epss 0.00

    IBM AppScan Source uses a one-way hash without salt to encrypt highly sensitive information, which could allow a local attacker to decrypt information more easily.