CVE-2020-4487
4.3
Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
Exploitability: 2.8 / Impact: 1.4
Source: NVD
Description
IBM Jazz Foundation Products could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system. IBM X-Force ID: 181862.
Affected (33)
Products: Ibm: Collaborative Lifecycle Management, Doors Next, Engineering Insights, Engineering Lifecycle Management, Engineering Test Management, Engineering Workflow Management, Rational Doors Next Generation, Rational Engineering Lifecycle Manager, Rational Quality Manager, Rational Rhapsody Design Manager, Rational Team Concert, Reference Data Management, Rhapsody Model Manager
Configuration A
| Vulnerable Software | Affected Versions |
|---|---|
| Version 6.0.2 | |
| Version 7.0.1 | |
| Version 7.0.1 | |
| Version 7.0.1 | |
| Version 7.0.0 | |
| Version 7.0.1 | |
| Version 6.0.2 | |
| Version 6.0.6.1 | |
| Version 6.0.2 | |
| Version 6.0.2 | |
| Version 6.0.2 | |
| Version 7.0.1 | |
| Version 6.0.2 |
References (4)
Source: psirt@us.ibm.com
VDB EntryVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
VDB EntryVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Timeline
No history available yet.