CVE-2018-1929

Summary

IBM Rational Engineering Lifecycle Manager 5.0 through 6.0.6 could allow a malicious user to be allowed to view any view if he knows the URL link of a the view, and access information that should not be able to see. IBM X-Force ID: 153120.

Affected Software

VendorProductVersion RangeStatus
IBMRational Engineering Lifecycle Manager5.0affected
IBMRational Engineering Lifecycle Manager5.0.1affected
IBMRational Engineering Lifecycle Manager5.0.2affected
IBMRational Engineering Lifecycle Manager6.0affected
IBMRational Engineering Lifecycle Manager6.0.1affected
IBMRational Engineering Lifecycle Manager6.0.2affected
IBMRational Engineering Lifecycle Manager6.0.3affected
IBMRational Engineering Lifecycle Manager6.0.4affected
IBMRational Engineering Lifecycle Manager6.0.5affected
IBMRational Engineering Lifecycle Manager6.0.6affected

Weaknesses

  • Obtain Information

ADP Enrichment

CVE Program Container

Additional References

References