CVE-2014-6119

{"id": "CVE-2014-6119", "cveTags": [], "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 9.3, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C", "authentication": "NONE", "integrityImpact": "COMPLETE", "accessComplexity": "MEDIUM", "availabilityImpact": "COMPLETE", "confidentialityImpact": "COMPLETE"}, "acInsufInfo": false, "impactScore": 10.0, "baseSeverity": "HIGH", "obtainAllPrivilege": false, "exploitabilityScore": 8.6, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2014-12-23T02:59:00.047", "references": [{"url": "http://secunia.com/advisories/62012", "source": "psirt@us.ibm.com"}, {"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21693035", "tags": ["Vendor Advisory"], "source": "psirt@us.ibm.com"}, {"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21693183", "source": "psirt@us.ibm.com"}, {"url": "http://www.securitytracker.com/id/1031427", "source": "psirt@us.ibm.com"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/96720", "source": "psirt@us.ibm.com"}, {"url": "http://secunia.com/advisories/62012", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21693035", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21693183", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.securitytracker.com/id/1031427", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/96720", "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Deferred", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-94"}]}], "descriptions": [{"lang": "en", "value": "IBM Security AppScan Enterprise 8.5 before 8.5 IFix 002, 8.6 before 8.6 IFix 004, 8.7 before 8.7 IFix 004, 8.8 before 8.8 iFix 003, 9.0 before 9.0.0.1 iFix 003, and 9.0.1 before 9.0.1 iFix 001 allows remote attackers to execute arbitrary code via a crafted executable file in an archive."}, {"lang": "es", "value": "IBM Security AppScan Enterprise 8.5 anterior a 8.5 IFix 002, 8.6 anterior a IFix 004, 8.7 anterior a 8.7 IFix 004, 8.8 anterior a 8.8 iFix 003, 9.0 anterior a 9.0.0.1 iFix 003 y 9.0.1 anterior a 9.0.1 iFix 001 permite a atacantes remotos a ejecutar c\u00f3digo arbitrario mediante un archivo ejecutable modificado en un archivo."}], "lastModified": "2025-04-12T10:46:40.837", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:ibm:security_appscan:8.5:*:*:*:enterprise:*:*:*", "vulnerable": true, "matchCriteriaId": "692FDD2B-0DB7-4016-B329-2A7C04E93CE8"}, {"criteria": "cpe:2.3:a:ibm:security_appscan:8.6:*:*:*:enterprise:*:*:*", "vulnerable": true, "matchCriteriaId": "E6BD30B4-C6C6-4DDB-95B0-E0DBF1056F8C"}, {"criteria": "cpe:2.3:a:ibm:security_appscan:8.7:*:*:*:enterprise:*:*:*", "vulnerable": true, "matchCriteriaId": "041F2DE0-4791-4A91-A0B2-B251706DB05B"}, {"criteria": "cpe:2.3:a:ibm:security_appscan:8.8:*:*:*:enterprise:*:*:*", "vulnerable": true, "matchCriteriaId": "75617EAA-BE1C-477D-BDDE-0C61582FE5AF"}, {"criteria": "cpe:2.3:a:ibm:security_appscan:9.0:*:*:*:enterprise:*:*:*", "vulnerable": true, "matchCriteriaId": "9D09C700-2B51-4EDC-93A1-366C6A9C5A3C"}, {"criteria": "cpe:2.3:a:ibm:security_appscan:9.0.0.1:*:*:*:enterprise:*:*:*", "vulnerable": true, "matchCriteriaId": "D4CDD602-C438-4432-B722-2B2FB36F05A7"}, {"criteria": "cpe:2.3:a:ibm:security_appscan_source:9.0.1:*:*:*:enterprise:*:*:*", "vulnerable": true, "matchCriteriaId": "F67CFF41-85F4-477A-93C9-C1A28766D2EC"}], "operator": "OR"}]}], "sourceIdentifier": "psirt@us.ibm.com"}