CVE-2014-0839

CWE-2643 documents3 sources
Severity
4.0MEDIUM
EPSS
0.2%
top 63.93%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
IBM Rational Focal Point
Timeline
PublishedFeb 26
Latest updateMay 17

Description

IBM Rational Focal Point 6.4.x and 6.5.x before 6.5.2.3 and 6.6.x before 6.6.1 allows remote authenticated users to modify data via vectors involving a direct object reference.

CVSS vector

AV:N/AC:L/C:N/I:P/A:NExploitability: 8.0 | Impact: 2.9

Affected Packages1 packages

NVDibm/rational_focal_point17 versions+16

Patches

Patch: www-01.ibm.comPatch: www-01.ibm.com

🔴Vulnerability Details

2
GHSA
GHSA-9r84-m8gq-9jcw: IBM Rational Focal Point 62022-05-17
CVEList
CVE-2014-0839: IBM Rational Focal Point 62014-02-25
CVE-2014-0839 (MEDIUM CVSS 4) | IBM Rational Focal Point 6.4.x and | cvebase.io