cbcvebase.
CVE-2015-0121
published 2015-05-30

CVE-2015-0121: IBM Rational Requirements Composer 3.0 through 3.0.1.6 and 4.0 through 4.0.7 and Rational DOORS Next Generation (RDNG) 4.0 through 4.0.7 and 5.0 through 5.0.2…

low3.7CVSS 3.1
AVLACHAuNCPIPAP
IBM Rational Requirements Composer 3.0 through 3.0.1.6 and 4.0 through 4.0.7 and Rational DOORS Next Generation (RDNG) 4.0 through 4.0.7 and 5.0 through 5.0.2, when LTPA single sign on is used with WebSphere Application Server, do not terminate a Requirements Management (RM) session upon LTPA token expiration, which allows remote attackers to obtain access by leveraging an unattended workstation.

Affected

30 ranges· showing 25
VendorProductVersion rangeFixed in
ibmrational_doors_next_generation
ibmrational_doors_next_generation
ibmrational_doors_next_generation
ibmrational_doors_next_generation
ibmrational_doors_next_generation
ibmrational_doors_next_generation
ibmrational_doors_next_generation
ibmrational_doors_next_generation
ibmrational_doors_next_generation
ibmrational_doors_next_generation
ibmrational_doors_next_generation
ibmrational_requirements_composer
ibmrational_requirements_composer
ibmrational_requirements_composer
ibmrational_requirements_composer
ibmrational_requirements_composer
ibmrational_requirements_composer
ibmrational_requirements_composer
ibmrational_requirements_composer
ibmrational_requirements_composer
ibmrational_requirements_composer
ibmrational_requirements_composer
ibmrational_requirements_composer
ibmrational_requirements_composer
ibmrational_requirements_composer