CVE-2019-4457IBM Jazz Foundation vulnerability

3 documents3 sources
Severity
6.5MEDIUMNVD
EPSS
0.2%
top 52.05%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
IBM Jazz FoundationIBM Rational Rhapsody Design Manager
Timeline
PublishedFeb 19
Latest updateMay 24

Description

IBM Jazz Foundation 6.0, 6.0.1, 6.0.2, 6.0.3, 6.0.4, 6.0.5, 6.0.6, and 6.0.6.1 could allow an authenticated user to obtain sensitive information that could be used in further attacks against the system. IBM X-Force ID: 163654.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:NExploitability: 2.8 | Impact: 3.6

Affected Packages2 packages

NVDibm/jazz_foundation6.0.06.0.6.1
CVEListV5ibm/rational_rhapsody_design_manager8 versions+7

🔴Vulnerability Details

2
GHSA
GHSA-rc7x-cfxf-7qxv: IBM Jazz Foundation 62022-05-24
CVEList
CVE-2019-4457: IBM Jazz Foundation 62020-02-19
CVE-2019-4457 — IBM Jazz Foundation vulnerability | cvebase