CVE-2015-4962

CWE-200 — Information Exposure3 documents3 sources

Severity

3.5LOW

EPSS

0.1%

top 77.81%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

IBM Rational Collaborative Lifecycle Management IBM Rational Doors Next Generation IBM Rational Engineering Lifecycle Manager +5 more

Timeline

PublishedJan 3

Latest updateMay 17

Description

Jazz Team Server in Jazz Foundation in IBM Rational Collaborative Lifecycle Management (CLM) 3.x and 4.x before 4.0.7 IF9, 5.x before 5.0.2 IF9, and 6.x before 6.0.1; Rational Quality Manager (RQM) 3.x before 3.0.1.6 IF7, 4.x before 4.0.7 IF9, 5.x before 5.0.2 IF9, and 6.x before 6.0.1; Rational Team Concert (RTC) 3.x before 3.0.1.6 IF7, 4.x before 4.0.7 IF9, 5.x before 5.0.2 IF9, and 6.x before 6.0.1; Rational Requirements Composer (RRC) 3.x before 3.0.1.6 IF7 and 4.x before 4.0.7 IF9; Rational…

CVSS vector

CVSS:3.0/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:NExploitability: 2.1 | Impact: 1.4

Affected Packages8 packages

▶NVDibm/rational_software_architect_design_manager14 versions+13

▶NVDibm/rational_rhapsody_design_manager15 versions+14

▶NVDibm/rational_engineering_lifecycle_manager10 versions+9

▶NVDibm/rational_quality_manager23 versions+22

▶NVDibm/rational_collaborative_lifecycle_management11 versions+10

🔴Vulnerability Details

GHSA

GHSA-x2pr-phh8-cc72: Jazz Team Server in Jazz Foundation in IBM Rational Collaborative Lifecycle Management (CLM) 3↗2022-05-17

▶

CVEList

CVE-2015-4962: Jazz Team Server in Jazz Foundation in IBM Rational Collaborative Lifecycle Management (CLM) 3↗2016-01-03

▶