CVE-2019-4084
4.3
CVSS:3.0/UI:N/AV:N/PR:L/S:U/I:N/C:L/AC:L/A:N/RC:C/E:U/RL:O
Summary
IBM Jazz Foundation products (IBM Rational Collaborative Lifecycle Management 6.0 through 6.0.6.1) could allow an authenticated user to obtain sensitive information from CLM Applications that could be used in further attacks against the system. IBM X-Force ID: 157384.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| IBM | Rational Collaborative Lifecycle Management | 6.0 | affected |
| IBM | Rational Collaborative Lifecycle Management | 6.0.1 | affected |
| IBM | Rational Collaborative Lifecycle Management | 6.0.2 | affected |
| IBM | Rational Collaborative Lifecycle Management | 6.0.3 | affected |
| IBM | Rational Collaborative Lifecycle Management | 6.0.4 | affected |
| IBM | Rational Collaborative Lifecycle Management | 6.0.5 | affected |
| IBM | Rational Collaborative Lifecycle Management | 6.0.6 | affected |
| IBM | Rational Collaborative Lifecycle Management | 6.0.6.1 | affected |
Weaknesses
- Obtain Information
ADP Enrichment
CVE Program Container
Additional References
- http://www.ibm.com/support/docview.wss?uid=ibm10956525
- https://exchange.xforce.ibmcloud.com/vulnerabilities/157384
References
- http://www.ibm.com/support/docview.wss?uid=ibm10956525
- https://exchange.xforce.ibmcloud.com/vulnerabilities/157384
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.