PT-2019-16890 · Ibm · Ibm Rational Collaborative Lifecycle Management+1
Published
2019-06-27
·
Updated
2022-12-09
·
CVE-2019-4084
CVSS v3.1
4.3
Medium
| Vector | AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
IBM Jazz Foundation products (IBM Rational Collaborative Lifecycle Management) versions 6.0 through 6.0.6.1
Description
The issue allows an authenticated user to obtain sensitive information from CLM Applications, which could be used in further attacks against the system.
Recommendations
For versions 6.0 through 6.0.6.1, update to a version that contains a fix for this issue to prevent authenticated users from obtaining sensitive information.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Ibm Jazz Foundation
Ibm Rational Collaborative Lifecycle Management