Service-Account Impersonation Vulnerability in IBM Rational AppScan Enterprise 5.x and 8.x

Service-Account Impersonation Vulnerability in IBM Rational AppScan Enterprise 5.x and 8.x

CVE-2012-0731 · MEDIUM Severity

AV:N/AC:L/AU:S/C:C/I:N/A:N

IBM Rational AppScan Enterprise 5.x and 8.x before 8.5.0.1 does not prevent service-account impersonation, which allows remote authenticated users to read arbitrary files via unspecified vectors.

Learn more about our User Device Pen Test.