5.3 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
LOW
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
Potential Denial of Service (DoS) security vulnerability in IBM Rational Synergy due to a Java HashTable security vulnerability in Jetty (CVE-2011-4461).
| Subscribe to My Notifications to be notified of important product support alerts like this.
CVE ID:CVE-2011-4461
**
Description: **IBM Rational Synergy is potentially vulnerable to Denial of Service attacks because one of its embedded components, Jetty, has a security vulnerability. The vulnerability is caused by insufficient randomization of hash data structures. A remote attacker could exploit this vulnerability to cause the consumption of CPU resources. Customers who are using IBM Rational Synergy may be impacted by this Jetty vulnerability which can cause performance or Denial of Service (DoS) issues. **
**CVSS Base Score: 2 **CVSS Temporal Score:**See <https://exchange.xforce.ibmcloud.com/vulnerabilities/72017> for the current score *CVSS Environmental Score:**Undefined **CVSS Vector: **(AV:N/AC:L/Au:N/C:N/I:N/A:P)
All Rational Synergy supported platforms.
Upgrade to one of the following releases:
None
5.3 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
LOW
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P