NVD

Id
26274  
Name
CVE-2015-4962  
Description
Jazz Team Server in Jazz Foundation in IBM Rational Collaborative Lifecycle Management (CLM) 3.x and 4.x before 4.0.7 IF9, 5.x before 5.0.2 IF9, and 6.x before 6.0.1; Rational Quality Manager (RQM) 3.x before 3.0.1.6 IF7, 4.x before 4.0.7 IF9, 5.x before 5.0.2 IF9, and 6.x before 6.0.1; Rational Team Concert (RTC) 3.x before 3.0.1.6 IF7, 4.x before 4.0.7 IF9, 5.x before 5.0.2 IF9, and 6.x before 6.0.1; Rational Requirements Composer (RRC) 3.x before 3.0.1.6 IF7 and 4.x before 4.0.7 IF9; Rational DOORS Next Generation (RDNG) 4.x before 4.0.7 IF9, 5.x before 5.0.2 IF9, and 6.x before 6.0.1; Rational Engineering Lifecycle Manager (RELM) 4.x through 4.0.7, 5.x through 5.0.2, and 6.x before 6.0.1; Rational Rhapsody Design Manager (DM) 4.x through 4.0.7, 5.x through 5.0.2, and 6.x before 6.0.1; and Rational Software Architect Design Manager (DM) 4.x through 4.0.7, 5.x through 5.0.2, and 6.x before 6.0.1 uses weak permissions for unspecified project areas, which allows remote authenticated users to obtain sensitive information via unknown vectors.  
Reject
 
CVSS Version
2  
CVSS Score
2.7  
Severity
Low  
CVSS Base Score
2.7  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
5.1  
CVSS Vector
(AV:A/AC:L/Au:S/C:P/I:N/A:N)  
Pub Date
2017-01-19  
Published
2016-01-03  
Modified Date
2016-01-07  
Seq
2015-4962  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
139101 26274 CVE-2015-4962 http://www-01.ibm.com/support/docview.wss?uid=swg21973404  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
11355 JVNDB-2015-006675 複数の IBM Rational 製品の Jazz Foundation の Jazz Team Server における重要な情報を取得される脆弱性 複数の IBM Rational 製品の Jazz Foundation の Jazz Team Server は、不特定のプロジェクトエリアに脆弱なパーミッションを使用するため、重要な情報を取得される脆弱性が存在します。 CVE-2015-4962 82187 CVE-2015-4962 26274 2.7 http://jvndb.jvn.jp/ja/contents/2015/JVNDB-2015-006675.html 2015-12-22 2016-01-08 View