Directory Traversal Vulnerability in IBM Rational Software Architect and Rhapsody Design Manager
CVE-2013-3042

Currently unrated

Key Information:

Vendor: IBM
Status: Rational Software Architect Design Manager; Rhapsody Design Manager
Vendor: CVE Published:; 14 December 2013

What is CVE-2013-3042?

A directory traversal vulnerability exists in the server component of IBM Rational Software Architect Design Manager and Rhapsody Design Manager versions 3.x and 4.x prior to 4.0.5. This vulnerability allows local users to traverse directories and read arbitrary files on the affected system by exploiting temporary files. Attack vectors involve unauthorized file access, which can lead to exposure of sensitive information and system configuration details.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/84768

vdb-entryx_refsource_XF

http://www-01.ibm.com/support/docview.wss?uid=swg21655724

x_refsource_CONFIRM

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Dec 14, 2013
Vulnerability Reserved
Apr 12, 2013