2.1

CVE-2014-3079

The Administration and Reporting Tool in IBM Rational License Key Server (RLKS) 8.1.4.x before 8.1.4.4 allows remote authenticated users to bypass authorization checks and visit unspecified URLs with license-usage data via a DESCRIBE clause in a SPARQL query.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
IbmRational License Key Server Version8.1.4
IbmRational License Key Server Version8.1.4.2
IbmRational License Key Server Version8.1.4.3
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 1.65% 0.734
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 2.1 3.9 2.9
AV:N/AC:H/Au:S/C:P/I:N/A:N
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://www-01.ibm.com/support/docview.wss?uid=swg21681449
Patch
Vendor Advisory
http://www-01.ibm.com/support/docview.wss?uid=swg24038045
http://secunia.com/advisories/61071
http://secunia.com/advisories/60709
http://www-01.ibm.com/support/docview.wss?uid=swg21682627
http://www.securityfocus.com/bid/69643
https://exchange.xforce.ibmcloud.com/vulnerabilities/93912