CVE-2014-0936 Information

Description

IBM Security AppScan Source 8.0 through 9.0 when the publish-assessment permission is not properly restricted for the configured database server transmits cleartext assessment data which allows remote attackers to obtain sensitive information by sniffing the network.

Reference

http://www-01.ibm.com/support/docview.wss?uid=swg21674750 https://exchange.xforce.ibmcloud.com/vulnerabilities/92317