3 matches found
IBM Rational License Key Server Administration and Reporting Tool 8.1.4.x < 8.1.4.4 Multiple Vulnerabilities
The remote host is running a version 8.1.4.x of IBM Rational License Key Server Administration and Reporting Tool RLKS that is prior to 8.1.4.4. It is, therefore, affected by multiple vulnerabilities : - The secure flag for session cookies is not properly set when in SSL mode. An attacker can...
CVE-2014-3079
The Administration and Reporting Tool in IBM Rational License Key Server RLKS 8.1.4.x before 8.1.4.4 allows remote authenticated users to bypass authorization checks and visit unspecified URLs with license-usage data via a DESCRIBE clause in a SPARQL query...
CVE-2014-3079
IBM RLKS Administration and Reporting Tool (8.1.4.x) prior to 8.1.4.4 is affected by multiple CVEs. CVE-2014-3079 allows remote authenticated users to bypass authorization via a DESCRIBE clause in a SPARQL query, potentially accessing license-usage data. CVE-2014-0909 and CVE-2014-4756 describe c...