Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ibmIBME94FC4D5470C3574EF26DFE7E8FFAADFD29403F8240A38834983ED45DD9BD8E9
HistoryApr 28, 2021 - 6:35 p.m.

Security Bulletin: A security vulnerability has been identified in IBM WebSphere® Application Server shipped with multiple IBM Rational products based on IBM's Jazz technology (CVE-2015-2017)

2021-04-2818:35:50
www.ibm.com
8

0.002 Low

EPSS

Percentile

58.7%

JSON

Summary

IBM WebSphere® Application Server is shipped as a component of the following IBM Rational products: Collaborative Lifecycle Management (CLM), Rational Requirements Composer (RRC), Rational DOORS Next Generation (RDNG), Rational Engineering Lifecycle Manager (RELM), Rhapsody Design Manager (Rhapsody DM), Rational Software Architect Design Manager (RSA DM), Rational Team Concert (RTC), and Rational Quality Manager (RQM). Information about a security vulnerability affecting IBM WebSphere Application Server has been published in a security bulletin.

Vulnerability Details

IBM Jazz Team Server may be deployed on either IBM WebSphere Application Server (WAS) or Apache Tomcat. This bulletin is for those deployments using WAS.

Consult the security bulletin HTTP response splitting attack in IBM WebSphere Application Server (CVE-2015-2017) for vulnerability details and information about fixes.

Affected Products and Versions

Rational Collaborative Lifecycle Management 3.0.1 - 6.0

Rational Quality Manager 2.0 - 2.0.1
Rational Quality Manager 3.0 - 3.0.1.6
Rational Quality Manager 4.0 - 4.0.7
Rational Quality Manager 5.0 - 5.0.2
Rational Quality Manager 6.0

Rational Team Concert 2.0 - 2.0.0.2
Rational Team Concert 3.0 - 3.0.6
Rational Team Concert 4.0 - 4.0.7
Rational Team Concert 5.0 - 5.0.2
Rational Team Concert 6.0

Rational Requirements Composer 2.0 - 2.0.0.4
Rational Requirements Composer 3.0 - 3.0.1.6
Rational Requirements Composer 4.0 - 4.0.7

Rational DOORS Next Generation 4.0 - 4.0.7
Rational DOORS Next Generation 5.0 - 5.0.2
Rational DOORS Next Generation 6.0

Rational Engineering Lifecycle Manager 1.0- 1.0.0.1
Rational Engineering Lifecycle Manager 4.0.3 - 4.0.7
Rational Engineering Lifecycle Manager 5.0 - 5.0.2
Rational Engineering Lifecycle Manager 6.0

Rational Rhapsody Design Manager 3.0 - 3.0.1
Rational Rhapsody Design Manager 4.0 - 4.0.7
Rational Rhapsody Design Manager 5.0 - 5.0.2
Rational Rhapsody Design Manager 6.0

Rational Software Architect Design Manager 3.0 - 3.0.1
Rational Software Architect Design Manager 4.0 - 4.0.7
Rational Software Architect Design Manager 5.0 - 5.0.2
Rational Software Architect Design Manager 6.0

Related

ibm 60
prion 1
openvas 1
cve 1
cvelist 1
nvd 1
nessus 2
ibm
ibm
Security Bulletin: A security vulnerability has been identified in embedded IBM WebSphere Application Server shipped with Tivoli Netcool/OMNIbus WebGUI (CVE-2015-2017)
2018-06-17 15:12:40
Security Bulletin: A security vulnerability has been identified in WebSphere Application Server shipped with WebSphere Remote Server (CVE-2015-2017)
2018-06-15 07:03:52
Security Bulletin: Vulnerability identified in IBM WebSphere Application Server shipped with IBM WebSphere Service Registry and Repository (CVE-2015-2017)
2018-06-15 07:03:51
prion
prion
Crlf injection
2015-11-08 22:59:00
openvas
openvas
IBM Websphere Application Server CRLF Injection Vulnerability (Feb 2016)
2016-03-01 00:00:00
cve
cve
CVE-2015-2017
2015-11-08 22:59:09
cvelist
cvelist
CVE-2015-2017
2015-11-08 22:00:00
nvd
nvd
CVE-2015-2017
2015-11-08 22:59:09
nessus
nessus
IBM WebSphere Application Server 6.1.0.x <= 6.1.0.47 / 7.0.0.x < 7.0.0.39 / 8.0.0.x < 8.0.0.12 / 8.5.x < 8.5.5.8 HTTP Response Splitting (CVE-2015-2017)
2020-11-03 00:00:00
IBM WebSphere Application Server 7.0 < 7.0.0.39 Multiple Vulnerabilities (FREAK)
2016-10-26 00:00:00

0.002 Low

EPSS

Percentile

58.7%

JSON
Related for E94FC4D5470C3574EF26DFE7E8FFAADFD29403F8240A38834983ED45DD9BD8E9
ibm60prion1openvas1cve1cvelist1nvd1nessus2