漏洞标题
N/A
漏洞描述信息
IBM Rational Jazz Team Server (JTS),在Rational Collaborative Lifecycle Management 3.x、4.x和5.x之前,用于4.0.7 iFix4和5.0.2 iFix2的Rational Quality Manager 2.x、3.x和4.x;在3.0.1.6 iFix5和4.0.7 iFix4之前,用于Rational Team Concert 2.x、3.x和5.x;在4.0.7 iFix4和5.0.2 iFix2之前,用于Rational DOORS Next Generation 4.x和5.x;以及其他产品,允许通过未指定的向量远程授权用户删除任意用户的仪表板。
CVSS信息
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
漏洞类别
N/A
漏洞标题
N/A
漏洞描述信息
IBM Rational Jazz Team Server (JTS), as used in Rational Collaborative Lifecycle Management 3.x and 4.x before 4.0.7 iFix4 and 5.x before 5.0.2 iFix2; Rational Quality Manager 2.x and 3.x before 3.0.1.6 iFix5, 4.x before 4.0.7 iFix4, and 5.x before 5.0.2 iFix2; Rational Team Concert 2.x and 3.x before 3.0.1.6 iFix5, 4.x before 4.0.7 iFix4, and 5.x before 5.0.2 iFix2; Rational DOORS Next Generation 4.x before 4.0.7 iFix4 and 5.x before 5.0.2 iFix2; Rational Requirements Composer 2.x and 3.x before 3.0.1.6 iFix5; and other products, allows remote authenticated users to delete the dashboards of arbitrary users via unspecified vectors.
CVSS信息
N/A
漏洞类别
N/A
漏洞标题
IBM Rational Jazz Team Server 权限许可和访问控制漏洞
漏洞描述信息
IBM Rational Jazz Team Server(JTS)是美国IBM公司的一套基于IBM Rational新一代产品的Java协作平台。该平台被封装为一个Web存档文件(WAR文件),伴随Rational Team Concert 1.0(RTC1.0)一同发布,可部署在应用服务器上为RTC提供底层Web服务。 IBM Rational JTS中存在安全漏洞。远程攻击者可利用该漏洞删除任意用户的仪表盘。使用该平台的以下产品及版本受到影响:IBM Rational Collaborative L
CVSS信息
N/A
漏洞类别
授权问题