4.3

CVE-2017-1191

An undisclosed vulnerability in CLM applications (including IBM Rational Collaborative Lifecycle Management 4.0, 5.0, and 6.0) with potential for failure to restrict URL Access. IBM X-Force ID: 123661.

Data is provided by the National Vulnerability Database (NVD)
IbmRational Collaborative Lifecycle Management Version >= 4.0.0 <= 6.0.4
IbmRational Quality Manager Version >= 4.0.0 <= 4.0.7
IbmRational Quality Manager Version >= 5.0.0 <= 5.0.2
IbmRational Quality Manager Version >= 6.0.0 <= 6.0.4
IbmRational Team Concert Version >= 4.0.0 <= 4.0.7
IbmRational Team Concert Version >= 5.0.0 <= 5.0.2
IbmRational Team Concert Version >= 6.0.0 <= 6.0.4
IbmRational Doors Next Generation Version >= 4.0.1 <= 4.0.7
IbmRational Doors Next Generation Version >= 5.0.0 <= 5.0.2
IbmRational Doors Next Generation Version >= 6.0.0 <= 6.0.4
IbmRational Engineering Lifecycle Manager Version >= 4.0.3 <= 4.0.7
IbmRational Engineering Lifecycle Manager Version >= 5.0.0 <= 5.0.2
IbmRational Engineering Lifecycle Manager Version >= 6.0.0 <= 6.0.4
IbmRational Rhapsody Design Manager Version >= 4.0.0 <= 4.0.7
IbmRational Rhapsody Design Manager Version >= 5.0.0 <= 5.0.2
IbmRational Rhapsody Design Manager Version >= 6.0.0 <= 6.0.4
IbmRational Software Architect Design Manager Version >= 4.0.0 <= 4.0.7
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Type Source Score Percentile
EPSS FIRST.org 0.13% 0.292
CVSS Metriken
Source Base Score Exploit Score Impact Score Vector string
nvd@nist.gov 4.3 2.8 1.4
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
nvd@nist.gov 4 8 2.9
AV:N/AC:L/Au:S/C:P/I:N/A:N
https://exchange.xforce.ibmcloud.com/vulnerabilities/123661
Vendor Advisory
VDB Entry
Issue Tracking