Remote Code Exposure in IBM Rational Collaborative Lifecycle Management and Related Products
CVE-2015-0113

Currently unrated

Key Information:

Vendor: IBM
Status: Rational Software Architect Design Manager
Vendor: CVE Published:; 27 April 2015

Summary

The Jazz help system in various IBM Rational products contains a vulnerability that permits remote attackers to access JSP source code via specially crafted requests. This could potentially lead to further exploitation and unauthorized access to sensitive data, making it imperative for users of these IBM Rational tools to remain vigilant and apply necessary security measures.

References

http://www-01.ibm.com/support/docview.wss?uid=swg21882770

x_refsource_CONFIRM

Timeline

Vulnerability published
Apr 27, 2015
Vulnerability Reserved
Nov 18, 2014