CVE-2015-5045
- EPSS 0.04%
- Veröffentlicht 26.03.2018 18:29:00
- Zuletzt bearbeitet 21.11.2024 02:32:13
The Administration and Reporting tool in IBM Rational License Key Server (RLKS) before 8.1.4.9 iFix 04 allows local users to obtain sensitive information via unspecified vectors. IBM X-Force ID: 106938.
- EPSS 0.18%
- Veröffentlicht 08.05.2015 01:59:01
- Zuletzt bearbeitet 12.04.2025 10:46:40
The Administration and Reporting Tool in IBM Rational License Key Server (RLKS) 8.1.4 before 8.1.4.7 allows remote authenticated users to read cookies via unspecified vectors.
- EPSS 0.35%
- Veröffentlicht 10.09.2014 10:55:07
- Zuletzt bearbeitet 12.04.2025 10:46:40
The Administration and Reporting Tool in IBM Rational License Key Server (RLKS) 8.1.4.x before 8.1.4.4 does not set the secure flag for the session cookie in an https session, which makes it easier for remote attackers to capture this cookie by inter...
CVE-2014-3079
- EPSS 0.37%
- Veröffentlicht 10.09.2014 10:55:07
- Zuletzt bearbeitet 12.04.2025 10:46:40
The Administration and Reporting Tool in IBM Rational License Key Server (RLKS) 8.1.4.x before 8.1.4.4 allows remote authenticated users to bypass authorization checks and visit unspecified URLs with license-usage data via a DESCRIBE clause in a SPAR...
CVE-2014-4756
- EPSS 0.28%
- Veröffentlicht 10.09.2014 10:55:07
- Zuletzt bearbeitet 12.04.2025 10:46:40
The Administration and Reporting Tool in IBM Rational License Key Server (RLKS) 8.1.4.x before 8.1.4.4 allows remote authenticated users to hijack sessions via unspecified vectors.
- EPSS 6.54%
- Veröffentlicht 19.01.2012 19:55:00
- Zuletzt bearbeitet 11.04.2025 00:51:21
Multiple directory traversal vulnerabilities in the vendor daemon in Rational Common Licensing in Telelogic License Server 2.0, Rational License Server 7.x, and ibmratl in IBM Rational License Key Server (RLKS) 8.0 through 8.1.2 allow remote attacker...