CVE-2017-1241 — Sensitive Information Exposure in IBM Rational Collaborative Lifecycle Management

CWE-200 — Sensitive Information Exposure3 documents3 sources

Severity

4.3MEDIUMNVD

EPSS

0.2%

top 60.67%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

IBM Rational Collaborative Lifecycle Management

Timeline

PublishedOct 25

Latest updateMay 17

Description

An unspecified vulnerability in IBM Jazz Foundation based applications might allow the display of stack trace information to an attacker. IBM X-Force ID: 124523.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:NExploitability: 2.8 | Impact: 1.4

Affected Packages2 packages

▶CVEListV5ibm/rational_collaborative_lifecycle_management16 versions+15

▶NVDibm/rational_collaborative_lifecycle_management16 versions+15

🔴Vulnerability Details

GHSA

GHSA-w2j2-4cph-26rw: An unspecified vulnerability in IBM Jazz Foundation based applications might allow the display of stack trace information to an attacker↗2022-05-17

▶

CVEList

CVE-2017-1241: An unspecified vulnerability in IBM Jazz Foundation based applications might allow the display of stack trace information to an attacker↗2017-10-25

▶