CVE-2018-1606

Name of the Vulnerable Software and Affected Versions IBM Rational Collaborative Lifecycle Management versions 5.0 through 5.02 and 6.0 through 6.0.6 IBM Rational DOORS Next Generation versions 5.0 through 5.02 and 6.0 through 6.0.6 IBM Rational Engineering Lifecycle Manager versions 5.0 through 5.02 and 6.0 through 6.0.6 IBM Rational Quality Manager versions 5.0 through 5.02 and 6.0 through 6.0.6 IBM Rational Rhapsody Design Manager versions 5.0 through 5.02 and 6.0 through 6.0.6 IBM Rational Software Architect Design Manager versions 5.0 through 5.02 and 6.0 through 6.0.1 IBM Rational Team Concert versions 5.0 through 5.02 and 6.0 through 6.0.6

Description The issue could allow an authenticated user to obtain sensitive information from an error message that could be used in further attacks against the system.

Recommendations For IBM Rational Collaborative Lifecycle Management versions 5.0 through 5.02 and 6.0 through 6.0.6, update to a version outside of the affected range. For IBM Rational DOORS Next Generation versions 5.0 through 5.02 and 6.0 through 6.0.6, update to a version outside of the affected range. For IBM Rational Engineering Lifecycle Manager versions 5.0 through 5.02 and 6.0 through 6.0.6, update to a version outside of the affected range. For IBM Rational Quality Manager versions 5.0 through 5.02 and 6.0 through 6.0.6, update to a version outside of the affected range. For IBM Rational Rhapsody Design Manager versions 5.0 through 5.02 and 6.0 through 6.0.6, update to a version outside of the affected range. For IBM Rational Software Architect Design Manager versions 5.0 through 5.02 and 6.0 through 6.0.1, update to a version outside of the affected range. For IBM Rational Team Concert versions 5.0 through 5.02 and 6.0 through 6.0.6, update to a version outside of the affected range.