logo
DATABASE RESOURCES PRICING ABOUT US

Security Bulletin: Multiple Vulnerabilities in Oracle Outside In Technology affect IBM Rational DOORS Next Generation (CVE-2018-2768, CVE-2018-2801, CVE-2018-2806)

Description

## Summary IBM Rational DOORS Next Generation® is affected by multiple vulnerabilities in the Oracle Outside In Technology® that is used as a component. ## Vulnerability Details **CVEID:** [CVE-2018-2768](<https://vulners.com/cve/CVE-2018-2768>) **DESCRIPTION:** An unspecified vulnerability in Oracle Fusion Middleware related to the Outside In Technology Outside In Filters component could allow an unauthenticated attacker to cause high confidentiality impact, no integrity impact, and low availability impact. CVSS Base Score: 7.1 CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/141924> for the current score CVSS Environmental Score*: Undefined CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:L) **CVEID:** [CVE-2018-2801](<https://vulners.com/cve/CVE-2018-2801>) **DESCRIPTION:** An unspecified vulnerability in Oracle Fusion Middleware related to the Outside In Technology Outside In Image Export SDK component could allow an unauthenticated attacker to cause high confidentiality impact, no integrity impact, and low availability impact. CVSS Base Score: 7.1 CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/141957> for the current score CVSS Environmental Score*: Undefined CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:L) **CVEID:** [CVE-2018-2806](<https://vulners.com/cve/CVE-2018-2806>) **DESCRIPTION:** An unspecified vulnerability in Oracle Fusion Middleware related to the Outside In Technology Outside In Filters component could allow an unauthenticated attacker to cause high confidentiality impact, no integrity impact, and low availability impact. CVSS Base Score: 7.1 CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/141962> for the current score CVSS Environmental Score*: Undefined CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:L) ## Affected Products and Versions Rational DOORS Next Generation 6.0.5 Previous versions are not affected ## Remediation/Fixes For Rational DOORS Next Generation 6.0.5, a fix is available by upgrading to 6.0.5 iFix006 or later [_Rational DOORS Next Generation 6.0.5 iFix006_](<https://www-945.ibm.com/support/fixcentral/swg/selectFixes?parent=ibm~Rational&product=ibm/Rational/Rational+DOORS+Next+Generation&release=6.0.5&platform=All&function=all>) For any prior versions of the products listed above, IBM reccomends upgrading to a fixed, supported version/release/platform of the product. If the iFix is not found in the iFix Portal please contact IBM support. ##


Affected Software


CPE Name Name Version
ibm engineering lifecycle management base any
ibm engineering requirements management doors next 6.0.5

Related