CVE-2016-6040
N/A
N/A
Summary
IBM Jazz Foundation could allow an authenticated user to take over a previously logged in user due to session expiration not being enforced.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| IBM Corporation | Rational Collaborative Lifecycle Management | 3.0.1 | affected |
| IBM Corporation | Rational Collaborative Lifecycle Management | 4.0 | affected |
| IBM Corporation | Rational Collaborative Lifecycle Management | 3.0.1.6 | affected |
| IBM Corporation | Rational Collaborative Lifecycle Management | 4.0.1 | affected |
| IBM Corporation | Rational Collaborative Lifecycle Management | 4.0.2 | affected |
| IBM Corporation | Rational Collaborative Lifecycle Management | 4.0.3 | affected |
| IBM Corporation | Rational Collaborative Lifecycle Management | 4.0.4 | affected |
| IBM Corporation | Rational Collaborative Lifecycle Management | 4.0.5 | affected |
| IBM Corporation | Rational Collaborative Lifecycle Management | 4.0.6 | affected |
| IBM Corporation | Rational Collaborative Lifecycle Management | 5.0 | affected |
| IBM Corporation | Rational Collaborative Lifecycle Management | 4.0.7 | affected |
| IBM Corporation | Rational Collaborative Lifecycle Management | 5.0.1 | affected |
| IBM Corporation | Rational Collaborative Lifecycle Management | 5.0.2 | affected |
| IBM Corporation | Rational Collaborative Lifecycle Management | 6.0 | affected |
| IBM Corporation | Rational Collaborative Lifecycle Management | 6.0.1 | affected |
| IBM Corporation | Rational Collaborative Lifecycle Management | 6.0.2 | affected |
| IBM Corporation | Rational Collaborative Lifecycle Management | 6.0.3 | affected |
Weaknesses
- Bypass Security
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.