CVE-2015-0113
5.0
Vector
AV:N/AC:L/Au:N/C:P/I:N/A:N
Exploitability: 10.0 / Impact: 2.9
Source: NVD
Description
The Jazz help system in IBM Rational Collaborative Lifecycle Management 4.0 through 5.0.2, Rational Quality Manager 4.0 through 4.0.7 and 5.0 through 5.0.2, Rational Team Concert 4.0 through 4.0.7 and 5.0 through 5.0.2, Rational Requirements Composer 4.0 through 4.0.7, Rational DOORS Next Generation 4.0 through 4.0.7 and 5.0 through 5.0.2, Rational Engineering Lifecycle Manager 4.0.3 through 4.0.7 and 5.0 through 5.0.2, Rational Rhapsody Design Manager 4.0 through 4.0.7 and 5.0 through 5.0.2, and Rational Software Architect Design Manager 4.0 through 4.0.7 and 5.0 through 5.0.2 allows remote attackers to read JSP source code via a crafted request.
Affected (86)
Configuration A
| Vulnerable Software | Affected Versions |
|---|---|
| Version 4.0.0 |
Configuration B
| Vulnerable Software | Affected Versions |
|---|---|
| Version 4.0.0.1 |
Configuration C
| Vulnerable Software | Affected Versions |
|---|---|
| Version 4.0.1 |
Configuration D
| Vulnerable Software | Affected Versions |
|---|---|
| Version 4.0.0 |
Configuration E
| Vulnerable Software | Affected Versions |
|---|---|
| Version 4.0.0.1 |
Configuration F
| Vulnerable Software | Affected Versions |
|---|---|
| Version 4.0.0 |
Configuration G
| Vulnerable Software | Affected Versions |
|---|---|
| Version 4.0.3 |
Configuration H
| Vulnerable Software | Affected Versions |
|---|---|
| Version 4.0.0.1 |
References (2)
Source: psirt@us.ibm.com
PatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
PatchVendor Advisory
Timeline
No history available yet.