2 matches found
Security Bulletin: Rational Insight - Jazz Reporting Service report results can be viewed without user log-in (CVE-2014-6115)
Summary A security vulnerability exists in the Jazz Reporting Service JRS that is shipped with Rational Insight. Vulnerability Details Security vulnerabilities have been discovered and reported in Jazz Reporting Service. CVEID: CVE-2014-6115 Description: A Jazz Reporting Service JRS report URL ca...
CVE-2014-6115
CVE-2014-6115 affects IBM Rational Insight 1.1.1.5 via the Jazz Reporting Service (JRS). A crafted JRS report URL can bypass authentication, allowing remote attackers to obtain sensitive information without user login. The IBM security bulletin confirms the vulnerability in Rational Insight’s JRS...