Date published: 2014-06-08T19:55:02.367-04:00
Date last modified: 2017-08-28T21:34:21.343-04:00
CVSS Score: 4.3
Principal attack vector: ADJACENT_NETWORK
Reference URL: http://www-01.ibm.com/support/docview.wss?uid=swg21674750
Summary: IBM Security AppScan Source 8.0 through 9.0, when the publish-assessment permission is not properly restricted for the configured database server, transmits cleartext assessment data, which allows remote attackers to obtain sensitive information by sniffing the network.