Lucene search
IbmCVE-2014-0845HistoryMar 04, 2014 - 10:55 p.m.
CVE-2014-0845
2014-03-0422:55:03
CWE-20
ibm
web.nvd.nist.gov
21
cve-2014-0845
open redirect
vulnerability
ibm rational requirements composer
rational doors next generation
phishing
security advisory
CVSS2
4.9
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:S/C:P/I:P/A:N
AI Score
6.2
Confidence
Low
EPSS
0.001
Percentile
40.3%
Open redirect vulnerability in IBM Rational Requirements Composer 3.x before 3.0.1.6 iFix2 and 4.x before 4.0.6, and Rational DOORS Next Generation 4.x before 4.0.6, allows remote authenticated users to redirect users to arbitrary web sites and conduct phishing attacks via a crafted URL.
Affected configurations
Node
ibmrational_requirements_composerMatch3.0.1
ORibmrational_requirements_composerMatch3.0.1.1
ORibmrational_requirements_composerMatch3.0.1.2
ORibmrational_requirements_composerMatch3.0.1.3
ORibmrational_requirements_composerMatch3.0.1.4
ORibmrational_requirements_composerMatch3.0.1.5
ORibmrational_requirements_composerMatch3.0.1.6
ORibmrational_requirements_composerMatch4.0.0
ORibmrational_requirements_composerMatch4.0.0.1
ORibmrational_requirements_composerMatch4.0.0.2
ORibmrational_requirements_composerMatch4.0.1
ORibmrational_requirements_composerMatch4.0.2
ORibmrational_requirements_composerMatch4.0.3
ORibmrational_requirements_composerMatch4.0.4
ORibmrational_requirements_composerMatch4.0.5
Node
ibmrational_doors_next_generationMatch4.0.0
ORibmrational_doors_next_generationMatch4.0.1
ORibmrational_doors_next_generationMatch4.0.2
ORibmrational_doors_next_generationMatch4.0.3
ORibmrational_doors_next_generationMatch4.0.4
ORibmrational_doors_next_generationMatch4.0.5
| Vendor | Product | Version | CPE |
|---|---|---|---|
| ibm | rational_requirements_composer | 3.0.1 | cpe:2.3:a:ibm:rational_requirements_composer:3.0.1:*:*:*:*:*:*:* |
| ibm | rational_requirements_composer | 3.0.1.1 | cpe:2.3:a:ibm:rational_requirements_composer:3.0.1.1:*:*:*:*:*:*:* |
| ibm | rational_requirements_composer | 3.0.1.2 | cpe:2.3:a:ibm:rational_requirements_composer:3.0.1.2:*:*:*:*:*:*:* |
| ibm | rational_requirements_composer | 3.0.1.3 | cpe:2.3:a:ibm:rational_requirements_composer:3.0.1.3:*:*:*:*:*:*:* |
| ibm | rational_requirements_composer | 3.0.1.4 | cpe:2.3:a:ibm:rational_requirements_composer:3.0.1.4:*:*:*:*:*:*:* |
| ibm | rational_requirements_composer | 3.0.1.5 | cpe:2.3:a:ibm:rational_requirements_composer:3.0.1.5:*:*:*:*:*:*:* |
| ibm | rational_requirements_composer | 3.0.1.6 | cpe:2.3:a:ibm:rational_requirements_composer:3.0.1.6:*:*:*:*:*:*:* |
| ibm | rational_requirements_composer | 4.0.0 | cpe:2.3:a:ibm:rational_requirements_composer:4.0.0:*:*:*:*:*:*:* |
| ibm | rational_requirements_composer | 4.0.0.1 | cpe:2.3:a:ibm:rational_requirements_composer:4.0.0.1:*:*:*:*:*:*:* |
| ibm | rational_requirements_composer | 4.0.0.2 | cpe:2.3:a:ibm:rational_requirements_composer:4.0.0.2:*:*:*:*:*:*:* |
Related
prion
prion
Open redirect
2014-03-04 22:55:00
cvelist
cvelist
CVE-2014-0845
2014-03-04 22:00:00
nvd
nvd
CVE-2014-0845
2014-03-04 22:55:03
seebug
seebug
IBM Rationalๅคไธชไบงๅๅคไธชๅฎๅ
จๆผๆด
2014-03-05 00:00:00
CVSS2
4.9
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:S/C:P/I:P/A:N
AI Score
6.2
Confidence
Low
EPSS
0.001
Percentile
40.3%
Related for CVE-2014-0845