IBM Jazz Team Server products is vulnerable to server-side request forgery (SSRF). This may allow an authenticated attacker to send unauthorized requests from the system, potentially leading to network enumeration or facilitating other attacks.
oryginał ENCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HIBM Engineering Lifecycle Optimization
APPIbm6.0.66.0.6.17.0IBM Engineering Requirements Quality Assistant On Premises
APPIbmwszystkie wersjeIBM Engineering Workflow Management
APPIbm7.07.0.17.0.2IBM Rational Doors Next Generation
APPIbm6.0.66.0.6.17.07.0.17.0.2IBM Rational Engineering Lifecycle Manager
APPIbm7.07.0.17.0.2IBM Rational Rhapsody Design Manager
APPIbmwszystkie wersjeIBM Rational Team Concert
APPIbm6.0.26.0.66.0.6.1
Powiązane podatności
IBM Engineering Lifecycle Optimization 7.0.2 and 7.0.3 uses an inadequate account lockout setting that could a...
IBM Jazz Team Server products could allow an authenticated user to obtain elevated privileges under certain co...
IBM Jazz Foundation and IBM Engineering products could allow a remote attacker to bypass security restrictions...
IBM Jazz Team Server products use weaker than expected cryptographic algorithms that could allow an attacker t...
IBM Jazz Foundation Products are vulnerable to an XML External Entity Injection (XXE) attack when processing X...