CVE-2011-1366

critical

Description

Unspecified vulnerability in the Import feature in IBM Rational AppScan Enterprise and AppScan Reporting Console 5.2 through 7.9.x and 8.x before 8.0.1.1 allows remote attackers to execute arbitrary commands on an agent server via a crafted ZIP archive.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/70043

http://www-01.ibm.com/support/docview.wss?uid=swg21515110

http://secunia.com/advisories/46329

http://secunia.com/advisories/46326

Details

Source: Mitre, NVD

Published: 2011-10-30

Updated: 2026-06-16

Risk Information

CVSS v2

Base Score: 8.8

Vector: CVSS2#AV:N/AC:M/Au:N/C:N/I:C/A:C

Severity: High

CVSS v3

Base Score: 9.8

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Severity: Critical

EPSS

EPSS: 0.0128