CVE-2018-1734
Severity Score
4.3
*CVSS v3.1
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
IBM Rational Collaborative Lifecycle Management 6.0 through 6.0.6.1 discloses sensitive information in error messages that may be used by a malicious user to orchestrate further attacks. IBM X-Force ID: 147838.
IBM Rational Collaborative Lifecycle Management 6.0 hasta 6.0.6.1 revela información confidencial en mensajes de error que un usuario malicioso puede usar para organizar más ataques. ID de IBM X-Force: 147838.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2017-12-13 CVE Reserved
- 2019-06-27 CVE Published
- 2023-05-08 EPSS Updated
- 2024-09-16 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-200: Exposure of Sensitive Information to an Unauthorized Actor
CAPEC
References (2)
| URL | Tag | Source |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| http://www.ibm.com/support/docview.wss?uid=ibm10956525 | 2023-01-30 |
| URL | Date | SRC |
|---|---|---|
| https://exchange.xforce.ibmcloud.com/vulnerabilities/147838 | 2023-01-30 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Ibm Search vendor "Ibm" | Rational Collaborative Lifecycle Management Search vendor "Ibm" for product "Rational Collaborative Lifecycle Management" | >= 6.0 <= 6.0.6.1 Search vendor "Ibm" for product "Rational Collaborative Lifecycle Management" and version " >= 6.0 <= 6.0.6.1" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Rational Doors Next Generation Search vendor "Ibm" for product "Rational Doors Next Generation" | >= 6.0 <= 6.0.6.1 Search vendor "Ibm" for product "Rational Doors Next Generation" and version " >= 6.0 <= 6.0.6.1" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Rational Engineering Lifecycle Manager Search vendor "Ibm" for product "Rational Engineering Lifecycle Manager" | >= 6.0 <= 6.0.6.1 Search vendor "Ibm" for product "Rational Engineering Lifecycle Manager" and version " >= 6.0 <= 6.0.6.1" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Rational Quality Manager Search vendor "Ibm" for product "Rational Quality Manager" | >= 6.0 <= 6.0.6.1 Search vendor "Ibm" for product "Rational Quality Manager" and version " >= 6.0 <= 6.0.6.1" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Rational Rhapsody Design Manager Search vendor "Ibm" for product "Rational Rhapsody Design Manager" | >= 6.0 <= 6.0.6.1 Search vendor "Ibm" for product "Rational Rhapsody Design Manager" and version " >= 6.0 <= 6.0.6.1" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Rational Software Architect Design Manager Search vendor "Ibm" for product "Rational Software Architect Design Manager" | >= 6.0 <= 6.0.1 Search vendor "Ibm" for product "Rational Software Architect Design Manager" and version " >= 6.0 <= 6.0.1" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Rational Team Concert Search vendor "Ibm" for product "Rational Team Concert" | >= 6.0 <= 6.0.6.1 Search vendor "Ibm" for product "Rational Team Concert" and version " >= 6.0 <= 6.0.6.1" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Rhapsody Model Manager Search vendor "Ibm" for product "Rhapsody Model Manager" | >= 6.0.5 <= 6.0.6.1 Search vendor "Ibm" for product "Rhapsody Model Manager" and version " >= 6.0.5 <= 6.0.6.1" | - |
Affected
| ||||||