Lucene search
HistoryMar 18, 2015 - 10:59 a.m.
CVE-2014-6131
ibm
rational jazz team server
jts
security vulnerability
remote access
authenticated user
dashboard
nvd
4 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:S/C:P/I:N/A:N
6.2 Medium
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
34.4%
IBM Rational Jazz Team Server (JTS), as used in Rational Collaborative Lifecycle Management 3.x and 4.x before 4.0.7 iFix4 and 5.x before 5.0.2 iFix2; Rational Quality Manager 2.x and 3.x before 3.0.1.6 iFix5, 4.x before 4.0.7 iFix4, and 5.x before 5.0.2 iFix2; Rational Team Concert 2.x and 3.x before 3.0.1.6 iFix5, 4.x before 4.0.7 iFix4, and 5.x before 5.0.2 iFix2; Rational DOORS Next Generation 4.x before 4.0.7 iFix4 and 5.x before 5.0.2 iFix2; Rational Requirements Composer 2.x and 3.x before 3.0.1.6 iFix5; and other products, allows remote authenticated users to read the dashboards of arbitrary users via unspecified vectors.
Affected configurations
Node
ibmrational_doors_next_generationMatch4.0.0
ORibmrational_doors_next_generationMatch4.0.1
ORibmrational_doors_next_generationMatch4.0.2
ORibmrational_doors_next_generationMatch4.0.3
ORibmrational_doors_next_generationMatch4.0.4
ORibmrational_doors_next_generationMatch4.0.5
ORibmrational_doors_next_generationMatch4.0.6
ORibmrational_doors_next_generationMatch4.0.7
ORibmrational_doors_next_generationMatch5.0
ORibmrational_doors_next_generationMatch5.0.1
ORibmrational_doors_next_generationMatch5.0.2
Node
ibmrational_requirements_composerMatch2.0
ORibmrational_requirements_composerMatch2.0.0.1
ORibmrational_requirements_composerMatch2.0.0.2
ORibmrational_requirements_composerMatch2.0.0.3
ORibmrational_requirements_composerMatch2.0.0.4
ORibmrational_requirements_composerMatch3.0
ORibmrational_requirements_composerMatch3.0.1
ORibmrational_requirements_composerMatch3.0.1.1
ORibmrational_requirements_composerMatch3.0.1.2
ORibmrational_requirements_composerMatch3.0.1.3
ORibmrational_requirements_composerMatch3.0.1.4
ORibmrational_requirements_composerMatch3.0.1.5
ORibmrational_requirements_composerMatch3.0.1.6
Node
ibmrational_collaborative_lifecycle_managementMatch3.0.0
ORibmrational_collaborative_lifecycle_managementMatch3.0.1
ORibmrational_collaborative_lifecycle_managementMatch3.0.1.1
ORibmrational_collaborative_lifecycle_managementMatch3.0.1.2
ORibmrational_collaborative_lifecycle_managementMatch3.0.1.3
ORibmrational_collaborative_lifecycle_managementMatch3.0.1.4
ORibmrational_collaborative_lifecycle_managementMatch3.0.1.5
ORibmrational_collaborative_lifecycle_managementMatch3.0.1.6
ORibmrational_collaborative_lifecycle_managementMatch4.0.0
ORibmrational_collaborative_lifecycle_managementMatch4.0.1
ORibmrational_collaborative_lifecycle_managementMatch4.0.2
ORibmrational_collaborative_lifecycle_managementMatch4.0.3
ORibmrational_collaborative_lifecycle_managementMatch4.0.4
ORibmrational_collaborative_lifecycle_managementMatch4.0.5
ORibmrational_collaborative_lifecycle_managementMatch4.0.6
ORibmrational_collaborative_lifecycle_managementMatch4.0.7
ORibmrational_collaborative_lifecycle_managementMatch5.0.0
ORibmrational_collaborative_lifecycle_managementMatch5.0.1
ORibmrational_collaborative_lifecycle_managementMatch5.0.2
Node
ibmrational_team_concertMatch2.0.0.1
ORibmrational_team_concertMatch2.0.0.2
ORibmrational_team_concertMatch3.0
ORibmrational_team_concertMatch3.0.1
ORibmrational_team_concertMatch3.0.1.1
ORibmrational_team_concertMatch3.0.1.2
ORibmrational_team_concertMatch3.0.1.3
ORibmrational_team_concertMatch3.0.1.4
ORibmrational_team_concertMatch3.0.1.5
ORibmrational_team_concertMatch3.0.1.6
ORibmrational_team_concertMatch4.0
ORibmrational_team_concertMatch4.0.0.1
ORibmrational_team_concertMatch4.0.0.2
ORibmrational_team_concertMatch4.0.1
ORibmrational_team_concertMatch4.0.2
ORibmrational_team_concertMatch4.0.3
ORibmrational_team_concertMatch4.0.4
ORibmrational_team_concertMatch4.0.5
ORibmrational_team_concertMatch4.0.6
ORibmrational_team_concertMatch4.0.7
ORibmrational_team_concertMatch5.0.0
ORibmrational_team_concertMatch5.0.1
ORibmrational_team_concertMatch5.0.2
Node
ibmrational_quality_managerMatch2.0
ORibmrational_quality_managerMatch2.0.0.1
ORibmrational_quality_managerMatch2.0.0.2
ORibmrational_quality_managerMatch2.0.1
ORibmrational_quality_managerMatch2.0.1.1
ORibmrational_quality_managerMatch3.0
ORibmrational_quality_managerMatch3.0.1
ORibmrational_quality_managerMatch3.0.1.1
ORibmrational_quality_managerMatch3.0.1.2
ORibmrational_quality_managerMatch3.0.1.3
ORibmrational_quality_managerMatch3.0.1.4
ORibmrational_quality_managerMatch3.0.1.5
ORibmrational_quality_managerMatch3.0.1.6
ORibmrational_quality_managerMatch4.0
ORibmrational_quality_managerMatch4.0.0.1
ORibmrational_quality_managerMatch4.0.0.2
ORibmrational_quality_managerMatch4.0.1
ORibmrational_quality_managerMatch4.0.2
ORibmrational_quality_managerMatch4.0.3
ORibmrational_quality_managerMatch4.0.4
ORibmrational_quality_managerMatch4.0.5
ORibmrational_quality_managerMatch4.0.7
ORibmrational_quality_managerMatch5.0.0
ORibmrational_quality_managerMatch5.0.1
ORibmrational_quality_managerMatch5.0.2
Related
prion
prion
Design/Logic Flaw
2015-03-18 10:59:00
cvelist
cvelist
CVE-2014-6131
2015-03-18 10:00:00
nvd
nvd
CVE-2014-6131
2015-03-18 10:59:01
4 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:S/C:P/I:N/A:N
6.2 Medium
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
34.4%
Related for CVE-2014-6131