Description
IBM Jazz Foundation and IBM Engineering products are vulnerable to server-side request forgery (SSRF). This may allow an authenticated attacker to send unauthorized requests from the system, potentially leading to network enumeration or facilitating other attacks. IBM X-Force ID: 194593.
Related CPE's
a
ibm
collaborative_lifecycle_management
a
ibm
engineering_lifecycle_management
a
ibm
engineering_lifecycle_optimization_-_engineering_insights
a
ibm
engineering_lifecycle_optimization_-_publishing
a
ibm
engineering_test_management
a
ibm
rational_doors_next_generation
a
ibm
rational_engineering_lifecycle_manager
a
ibm
rational_quality_manager
a
ibm
removable_media_manager
References
https://exchange.xforce.ibmcloud.com/vulnerabilities/194593
https://www.ibm.com/support/pages/node/6457739
CVSS impact metrics
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N
5.4 · Medium
CVSS V3.1
CVSS V3.0
CVSS V2.0
Information
Source identifier
Vulnerability status
Analyzed
Published
2021-06-02T21:15:07.497
4 years agoLast modified
2021-06-07T19:01:47.487
4 years ago