CVE-2015-0113

Currently unrated

Key Information:

Vendor: IBM
Status: Rational Software Architect Design Manager
Vendor: CVE Published:; 27 April 2015

Summary

The Jazz help system in IBM Rational Collaborative Lifecycle Management 4.0 through 5.0.2, Rational Quality Manager 4.0 through 4.0.7 and 5.0 through 5.0.2, Rational Team Concert 4.0 through 4.0.7 and 5.0 through 5.0.2, Rational Requirements Composer 4.0 through 4.0.7, Rational DOORS Next Generation 4.0 through 4.0.7 and 5.0 through 5.0.2, Rational Engineering Lifecycle Manager 4.0.3 through 4.0.7 and 5.0 through 5.0.2, Rational Rhapsody Design Manager 4.0 through 4.0.7 and 5.0 through 5.0.2, and Rational Software Architect Design Manager 4.0 through 4.0.7 and 5.0 through 5.0.2 allows remote attackers to read JSP source code via a crafted request.

References

http://www-01.ibm.com/support/docview.wss?uid=swg21882770

x_refsource_CONFIRM

Timeline

Vulnerability published
Apr 27, 2015
Vulnerability Reserved
Nov 18, 2014

Collectors

NVD DatabaseMitre Database