2 matches found
Security Bulletin: An undisclosed vulnerability affects IBM Rational products based on IBM Jazz technology
Summary Potential XML External Entity Processing vulnerability affects the following IBM Rational Products: Rational Rhapsody Design Manager Rhapsody DM, Rational Software Architect Design Manager RSA DM Vulnerability Details CVEID: CVE-2018-1456 DESCRIPTION: IBM Rhapsody DM is vulnerable to a XM...
CVE-2018-1456
CVE-2018-1456 affects IBM Rational Software Architect Design Manager and IBM Rhapsody DM (versions 5.0.0–5.0.2 and 6.0.0–6.0.5). The root cause is XML External Entity (XXE) processing during XML data handling, which could allow a remote attacker to disclose sensitive information or exhaust memory...