CVE-2018-1606

Summary

IBM Jazz based applications (IBM Rational Collaborative Lifecycle Management 5.0 through 5.02 and 6.0 through 6.0.6, IBM Rational DOORS Next Generation 5.0 through 5.02 and 6.0 through 6.0.6, IBM Rational Engineering Lifecycle Manager 5.0 through 5.02 and 6.0 through 6.0.6, IBM Rational Quality Manager 5.0 through 5.02 and 6.0 through 6.0.6, IBM Rational Rhapsody Design Manager 5.0 through 5.02 and 6.0 through 6.0.6, IBM Rational Software Architect Design Manager 5.0 through 5.02 and 6.0 through 6.0.1, IBM Rational Team Concert 5.0 through 5.02 and 6.0 through 6.0.6) could allow an authenticated user to obtain sensitive information from an error message that could be used in further attacks against the system. IBM X-Force ID: 143796.

Affected Software

VendorProductVersion RangeStatus
IBMRational Team Concert5.0affected
IBMRational Team Concert6.0affected
IBMRational Team Concert6.0.1affected
IBMRational Team Concert6.0.2affected
IBMRational Team Concert6.0.3affected
IBMRational Team Concert6.0.4affected
IBMRational Team Concert6.0.5affected
IBMRational Team Concert6.0.6affected
IBMRational Team Concert5.01affected
IBMRational Team Concert5.02affected
IBMRational Software Architect Design Manager5.0affected
IBMRational Software Architect Design Manager6.0affected
IBMRational Software Architect Design Manager6.0.1affected
IBMRational Software Architect Design Manager5.01affected
IBMRational Software Architect Design Manager5.02affected
IBMRational DOORS Next Generation5.0affected
IBMRational DOORS Next Generation6.0affected
IBMRational DOORS Next Generation6.0.1affected
IBMRational DOORS Next Generation6.0.2affected
IBMRational DOORS Next Generation6.0.3affected
IBMRational DOORS Next Generation6.0.4affected
IBMRational DOORS Next Generation6.0.5affected
IBMRational DOORS Next Generation6.0.6affected
IBMRational DOORS Next Generation5.01affected
IBMRational DOORS Next Generation5.02affected
IBMRational Collaborative Lifecycle Management5.0affected
IBMRational Collaborative Lifecycle Management6.0affected
IBMRational Collaborative Lifecycle Management6.0.1affected
IBMRational Collaborative Lifecycle Management6.0.2affected
IBMRational Collaborative Lifecycle Management6.0.3affected
IBMRational Collaborative Lifecycle Management6.0.4affected
IBMRational Collaborative Lifecycle Management6.0.5affected
IBMRational Collaborative Lifecycle Management6.0.6affected
IBMRational Collaborative Lifecycle Management5.01affected
IBMRational Collaborative Lifecycle Management5.02affected
IBMRational Rhapsody Design Manager5.0affected
IBMRational Rhapsody Design Manager6.0affected
IBMRational Rhapsody Design Manager6.0.1affected
IBMRational Rhapsody Design Manager6.0.2affected
IBMRational Rhapsody Design Manager6.0.3affected
IBMRational Rhapsody Design Manager6.0.4affected
IBMRational Rhapsody Design Manager6.0.5affected
IBMRational Rhapsody Design Manager6.0.6affected
IBMRational Rhapsody Design Manager5.01affected
IBMRational Rhapsody Design Manager5.02affected
IBMRational Quality Manager5.0affected
IBMRational Quality Manager6.0affected
IBMRational Quality Manager6.0.1affected
IBMRational Quality Manager6.0.2affected
IBMRational Quality Manager6.0.3affected
IBMRational Quality Manager6.0.4affected
IBMRational Quality Manager6.0.5affected
IBMRational Quality Manager6.0.6affected
IBMRational Quality Manager5.01affected
IBMRational Quality Manager5.02affected
IBMRational Engineering Lifecycle Manager5.0affected
IBMRational Engineering Lifecycle Manager6.0affected
IBMRational Engineering Lifecycle Manager6.0.1affected
IBMRational Engineering Lifecycle Manager6.0.2affected
IBMRational Engineering Lifecycle Manager6.0.3affected
IBMRational Engineering Lifecycle Manager6.0.4affected
IBMRational Engineering Lifecycle Manager6.0.5affected
IBMRational Engineering Lifecycle Manager6.0.6affected
IBMRational Engineering Lifecycle Manager5.01affected
IBMRational Engineering Lifecycle Manager5.02affected

Weaknesses

  • Obtain Information

ADP Enrichment

CVE Program Container

Additional References

References