5

CVE-2015-0113

EPSS 0.36%
Veröffentlicht 27.04.2015 11:59:03
Zuletzt bearbeitet 12.04.2025 10:46:40
Quelle psirt@us.ibm.com
Teams Watchlist Login
Unerledigt Login

The Jazz help system in IBM Rational Collaborative Lifecycle Management 4.0 through 5.0.2, Rational Quality Manager 4.0 through 4.0.7 and 5.0 through 5.0.2, Rational Team Concert 4.0 through 4.0.7 and 5.0 through 5.0.2, Rational Requirements Composer 4.0 through 4.0.7, Rational DOORS Next Generation 4.0 through 4.0.7 and 5.0 through 5.0.2, Rational Engineering Lifecycle Manager 4.0.3 through 4.0.7 and 5.0 through 5.0.2, Rational Rhapsody Design Manager 4.0 through 4.0.7 and 5.0 through 5.0.2, and Rational Software Architect Design Manager 4.0 through 4.0.7 and 5.0 through 5.0.2 allows remote attackers to read JSP source code via a crafted request.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 4

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Ibm ≫ Rational Software Architect Design Manager Version4.0.0

Ibm ≫ Rational Software Architect Design Manager Version4.0.1

Ibm ≫ Rational Software Architect Design Manager Version4.0.2

Ibm ≫ Rational Software Architect Design Manager Version4.0.3

Ibm ≫ Rational Software Architect Design Manager Version4.0.4

Ibm ≫ Rational Software Architect Design Manager Version4.0.5

Ibm ≫ Rational Software Architect Design Manager Version4.0.6

Ibm ≫ Rational Software Architect Design Manager Version4.0.7

Ibm ≫ Rational Software Architect Design Manager Version5.0

Ibm ≫ Rational Software Architect Design Manager Version5.0.1

Ibm ≫ Rational Software Architect Design Manager Version5.0.2

Ibm ≫ Rational Team Concert Version4.0

Ibm ≫ Rational Team Concert Version4.0.0.1

Ibm ≫ Rational Team Concert Version4.0.0.2

Ibm ≫ Rational Team Concert Version4.0.1

Ibm ≫ Rational Team Concert Version4.0.2

Ibm ≫ Rational Team Concert Version4.0.3

Ibm ≫ Rational Team Concert Version4.0.4

Ibm ≫ Rational Team Concert Version4.0.5

Ibm ≫ Rational Team Concert Version4.0.6

Ibm ≫ Rational Team Concert Version4.0.7

Ibm ≫ Rational Team Concert Version5.0.0

Ibm ≫ Rational Team Concert Version5.0.1

Ibm ≫ Rational Team Concert Version5.0.2

Ibm ≫ Rational Rhapsody Design Manager Version4.0

Ibm ≫ Rational Rhapsody Design Manager Version4.0.1

Ibm ≫ Rational Rhapsody Design Manager Version4.0.2

Ibm ≫ Rational Rhapsody Design Manager Version4.0.3

Ibm ≫ Rational Rhapsody Design Manager Version4.0.4

Ibm ≫ Rational Rhapsody Design Manager Version4.0.5

Ibm ≫ Rational Rhapsody Design Manager Version4.0.6

Ibm ≫ Rational Rhapsody Design Manager Version4.0.7

Ibm ≫ Rational Rhapsody Design Manager Version5.0

Ibm ≫ Rational Rhapsody Design Manager Version5.0.1

Ibm ≫ Rational Rhapsody Design Manager Version5.0.2

Ibm ≫ Rational Collaborative Lifecycle Management Version4.0.0

Ibm ≫ Rational Collaborative Lifecycle Management Version4.0.1

Ibm ≫ Rational Collaborative Lifecycle Management Version4.0.2

Ibm ≫ Rational Collaborative Lifecycle Management Version4.0.3

Ibm ≫ Rational Collaborative Lifecycle Management Version4.0.4

Ibm ≫ Rational Collaborative Lifecycle Management Version4.0.5

Ibm ≫ Rational Collaborative Lifecycle Management Version4.0.6

Ibm ≫ Rational Collaborative Lifecycle Management Version4.0.7

Ibm ≫ Rational Collaborative Lifecycle Management Version5.0.0

Ibm ≫ Rational Collaborative Lifecycle Management Version5.0.1

Ibm ≫ Rational Collaborative Lifecycle Management Version5.0.2

Ibm ≫ Rational Requirements Composer Version4.0.0

Ibm ≫ Rational Requirements Composer Version4.0.0.1

Ibm ≫ Rational Requirements Composer Version4.0.0.2

Ibm ≫ Rational Requirements Composer Version4.0.1

Ibm ≫ Rational Requirements Composer Version4.0.2

Ibm ≫ Rational Requirements Composer Version4.0.3

Ibm ≫ Rational Requirements Composer Version4.0.4

Ibm ≫ Rational Requirements Composer Version4.0.5

Ibm ≫ Rational Requirements Composer Version4.0.6

Ibm ≫ Rational Requirements Composer Version4.0.7

Ibm ≫ Rational Doors Next Generation Version4.0.0

Ibm ≫ Rational Doors Next Generation Version4.0.1

Ibm ≫ Rational Doors Next Generation Version4.0.2

Ibm ≫ Rational Doors Next Generation Version4.0.3

Ibm ≫ Rational Doors Next Generation Version4.0.4

Ibm ≫ Rational Doors Next Generation Version4.0.5

Ibm ≫ Rational Doors Next Generation Version4.0.6

Ibm ≫ Rational Doors Next Generation Version4.0.7

Ibm ≫ Rational Doors Next Generation Version5.0.1

Ibm ≫ Rational Doors Next Generation Version5.0.2

Ibm ≫ Rational Engineering Lifecycle Manager Version4.0.3

Ibm ≫ Rational Engineering Lifecycle Manager Version4.0.4

Ibm ≫ Rational Engineering Lifecycle Manager Version4.0.5

Ibm ≫ Rational Engineering Lifecycle Manager Version4.0.6

Ibm ≫ Rational Engineering Lifecycle Manager Version4.0.7

Ibm ≫ Rational Engineering Lifecycle Manager Version5.0

Ibm ≫ Rational Engineering Lifecycle Manager Version5.0.1

Ibm ≫ Rational Engineering Lifecycle Manager Version5.0.2

Ibm ≫ Rational Quality Manager Version4.0

Ibm ≫ Rational Quality Manager Version4.0.0.1

Ibm ≫ Rational Quality Manager Version4.0.0.2

Ibm ≫ Rational Quality Manager Version4.0.1

Ibm ≫ Rational Quality Manager Version4.0.2

Ibm ≫ Rational Quality Manager Version4.0.3

Ibm ≫ Rational Quality Manager Version4.0.4

Ibm ≫ Rational Quality Manager Version4.0.5

Ibm ≫ Rational Quality Manager Version4.0.7

Ibm ≫ Rational Quality Manager Version5.0.0

Ibm ≫ Rational Quality Manager Version5.0.1

Ibm ≫ Rational Quality Manager Version5.0.2

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.36%	0.576

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	5	10	2.9	AV:N/AC:L/Au:N/C:P/I:N/A:N

CWE-200 Exposure of Sensitive Information to an Unauthorized Actor

The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

http://www-01.ibm.com/support/docview.wss?uid=swg21882770

Patch

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2015-0113

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2015-0113

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2015-0113

EUVD