Description
IBM Rational Rhapsody Design Manager 5.0 through 5.0.2 and 6.0 through 6.0.5 and IBM Rational Software Architect Design Manager 5.0 through 5.0.2 and 6.0 through 6.0.1 could reveal technical error messages to allow an adversary to gain information about the application and database that could be used to conduct further attacks. IBM X-Force ID: 143500.
CVSS breakdown
CVSS 3.0
Availability
None
Attack Complexity
Low
Attack Vector
Network
Confidentiality
Low
Integrity
None
Privileges Required
Low
Scope
Unchanged
User Interaction
None
E
Unchanged
RC
Changed
RL
O
Affected products
- ibm / Rational Rhapsody Design Manager6.0.5 – 6.0.5
- ibm / Rational Rhapsody Design Manager6.0 – 6.0
- ibm / Rational Rhapsody Design Manager6.0.1 – 6.0.1
- ibm / Rational Rhapsody Design Manager6.0.2 – 6.0.2
- ibm / Rational Rhapsody Design Manager6.0.3 – 6.0.3
- ibm / Rational Rhapsody Design Manager6.0.4 – 6.0.4
- ibm / Rational Rhapsody Design Manager5.0 – 5.0
- ibm / Rational Rhapsody Design Manager5.0.2 – 5.0.2
- ibm / Rational Rhapsody Design Manager5.0.1 – 5.0.1
- ibm / Rational Software Architect Design Manager5.0.2 – 5.0.2
- ibm / Rational Software Architect Design Manager5.0.1 – 5.0.1
- ibm / Rational Software Architect Design Manager6.0 – 6.0
- ibm / Rational Software Architect Design Manager6.0.1 – 6.0.1
- ibm / Rational Software Architect Design Manager5.0 – 5.0