CVE-2016-3034
N/A
N/A
Summary
IBM AppScan Source uses a one-way hash without salt to encrypt highly sensitive information, which could allow a local attacker to decrypt information more easily.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| IBM Corporation | AppScan Source | 7.0 | affected |
| IBM Corporation | AppScan Source | 8.0 | affected |
| IBM Corporation | AppScan Source | 8.0.0.1 | affected |
| IBM Corporation | AppScan Source | 8.0.0.2 | affected |
| IBM Corporation | AppScan Source | 8.5 | affected |
| IBM Corporation | AppScan Source | 8.5.0.1 | affected |
| IBM Corporation | AppScan Source | 8.6 | affected |
| IBM Corporation | AppScan Source | 8.7 | affected |
| IBM Corporation | AppScan Source | 8.8 | affected |
| IBM Corporation | AppScan Source | 9.0 | affected |
| IBM Corporation | AppScan Source | 9.0.1 | affected |
| IBM Corporation | AppScan Source | 8.6.0.2 | affected |
| IBM Corporation | AppScan Source | 8.6.0.1 | affected |
| IBM Corporation | AppScan Source | 8.7.0.1 | affected |
| IBM Corporation | AppScan Source | 9.0.0.1 | affected |
| IBM Corporation | AppScan Source | 9.0.2 | affected |
| IBM Corporation | AppScan Source | 9.0.3.2 | affected |
| IBM Corporation | AppScan Source | 9.0.3 | affected |
| IBM Corporation | AppScan Source | 9.0.3.1 | affected |
| IBM Corporation | AppScan Source | 9.0.3.3 | affected |
| IBM Corporation | AppScan Source | 9.0.3.4 | affected |
| IBM Corporation | AppScan Source | 9.0.3.5 | affected |
Weaknesses
- Obtain Information
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.