Lucene search

IbmCVE-2015-1913

HistoryJun 30, 2015 - 10:59 a.m.

CVE-2015-1913

2015-06-3010:59:00

CWE-310

ibm

web.nvd.nist.gov

ibm

rational test workbench

rational test virtualization server

cve-2015-1913

security

vulnerability

md5

password hashing

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

AI Score

Confidence

Low

EPSS

0.003

Percentile

67.8%

JSON

Rational Test Control Panel in IBM Rational Test Workbench and Rational Test Virtualization Server 8.0.0.x before 8.0.0.5, 8.0.1.x before 8.0.1.6, 8.5.0.x before 8.5.0.4, 8.5.1.x before 8.5.1.5, 8.6.0.x before 8.6.0.4, and 8.7.0.x before 8.7.0.2 uses the MD5 algorithm for password hashing, which makes it easier for remote attackers to bypass authentication via unspecified vectors.

Affected configurations

Nvd

Node

ibmrational_test_virtualization_serverMatch8.0.0

ibmrational_test_virtualization_serverMatch8.0.0.1

ibmrational_test_virtualization_serverMatch8.0.0.2

ibmrational_test_virtualization_serverMatch8.0.0.3

ibmrational_test_virtualization_serverMatch8.0.0.4

ibmrational_test_virtualization_serverMatch8.0.1

ibmrational_test_virtualization_serverMatch8.0.1.1

ibmrational_test_virtualization_serverMatch8.0.1.2

ibmrational_test_virtualization_serverMatch8.0.1.3

ibmrational_test_virtualization_serverMatch8.0.1.4

ibmrational_test_virtualization_serverMatch8.0.1.5

ibmrational_test_virtualization_serverMatch8.5.0

ibmrational_test_virtualization_serverMatch8.5.0.1

ibmrational_test_virtualization_serverMatch8.5.0.2

ibmrational_test_virtualization_serverMatch8.5.0.3

ibmrational_test_virtualization_serverMatch8.5.1

ibmrational_test_virtualization_serverMatch8.5.1.1

ibmrational_test_virtualization_serverMatch8.5.1.2

ibmrational_test_virtualization_serverMatch8.5.1.3

ibmrational_test_virtualization_serverMatch8.5.1.4

ibmrational_test_virtualization_serverMatch8.6.0

ibmrational_test_virtualization_serverMatch8.6.0.1

ibmrational_test_virtualization_serverMatch8.6.0.2

ibmrational_test_virtualization_serverMatch8.6.0.3

ibmrational_test_virtualization_serverMatch8.7.0

ibmrational_test_virtualization_serverMatch8.7.0.1

Node

ibmrational_test_workbenchMatch8.0.0

ibmrational_test_workbenchMatch8.0.0.1

ibmrational_test_workbenchMatch8.0.0.2

ibmrational_test_workbenchMatch8.0.0.3

ibmrational_test_workbenchMatch8.0.0.4

ibmrational_test_workbenchMatch8.0.1

ibmrational_test_workbenchMatch8.0.1.1

ibmrational_test_workbenchMatch8.0.1.2

ibmrational_test_workbenchMatch8.0.1.3

ibmrational_test_workbenchMatch8.0.1.4

ibmrational_test_workbenchMatch8.0.1.5

ibmrational_test_workbenchMatch8.5.0

ibmrational_test_workbenchMatch8.5.0.1

ibmrational_test_workbenchMatch8.5.0.2

ibmrational_test_workbenchMatch8.5.0.3

ibmrational_test_workbenchMatch8.5.1

ibmrational_test_workbenchMatch8.5.1.1

ibmrational_test_workbenchMatch8.5.1.2

ibmrational_test_workbenchMatch8.5.1.3

ibmrational_test_workbenchMatch8.5.1.4

ibmrational_test_workbenchMatch8.6.0

ibmrational_test_workbenchMatch8.6.0.1

ibmrational_test_workbenchMatch8.6.0.2

ibmrational_test_workbenchMatch8.6.0.3

ibmrational_test_workbenchMatch8.7.0

ibmrational_test_workbenchMatch8.7.0.1

VendorProductVersionCPE
ibmrational_test_virtualization_server8.0.0cpe:2.3:a:ibm:rational_test_virtualization_server:8.0.0:*:*:*:*:*:*:*
ibmrational_test_virtualization_server8.0.0.1cpe:2.3:a:ibm:rational_test_virtualization_server:8.0.0.1:*:*:*:*:*:*:*
ibmrational_test_virtualization_server8.0.0.2cpe:2.3:a:ibm:rational_test_virtualization_server:8.0.0.2:*:*:*:*:*:*:*
ibmrational_test_virtualization_server8.0.0.3cpe:2.3:a:ibm:rational_test_virtualization_server:8.0.0.3:*:*:*:*:*:*:*
ibmrational_test_virtualization_server8.0.0.4cpe:2.3:a:ibm:rational_test_virtualization_server:8.0.0.4:*:*:*:*:*:*:*
ibmrational_test_virtualization_server8.0.1cpe:2.3:a:ibm:rational_test_virtualization_server:8.0.1:*:*:*:*:*:*:*
ibmrational_test_virtualization_server8.0.1.1cpe:2.3:a:ibm:rational_test_virtualization_server:8.0.1.1:*:*:*:*:*:*:*
ibmrational_test_virtualization_server8.0.1.2cpe:2.3:a:ibm:rational_test_virtualization_server:8.0.1.2:*:*:*:*:*:*:*
ibmrational_test_virtualization_server8.0.1.3cpe:2.3:a:ibm:rational_test_virtualization_server:8.0.1.3:*:*:*:*:*:*:*
ibmrational_test_virtualization_server8.0.1.4cpe:2.3:a:ibm:rational_test_virtualization_server:8.0.1.4:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
ibm	rational_test_virtualization_server	8.0.0	cpe:2.3:a:ibm:rational_test_virtualization_server:8.0.0:::::::*
ibm	rational_test_virtualization_server	8.0.0.1	cpe:2.3:a:ibm:rational_test_virtualization_server:8.0.0.1:::::::*
ibm	rational_test_virtualization_server	8.0.0.2	cpe:2.3:a:ibm:rational_test_virtualization_server:8.0.0.2:::::::*
ibm	rational_test_virtualization_server	8.0.0.3	cpe:2.3:a:ibm:rational_test_virtualization_server:8.0.0.3:::::::*
ibm	rational_test_virtualization_server	8.0.0.4	cpe:2.3:a:ibm:rational_test_virtualization_server:8.0.0.4:::::::*
ibm	rational_test_virtualization_server	8.0.1	cpe:2.3:a:ibm:rational_test_virtualization_server:8.0.1:::::::*
ibm	rational_test_virtualization_server	8.0.1.1	cpe:2.3:a:ibm:rational_test_virtualization_server:8.0.1.1:::::::*
ibm	rational_test_virtualization_server	8.0.1.2	cpe:2.3:a:ibm:rational_test_virtualization_server:8.0.1.2:::::::*
ibm	rational_test_virtualization_server	8.0.1.3	cpe:2.3:a:ibm:rational_test_virtualization_server:8.0.1.3:::::::*
ibm	rational_test_virtualization_server	8.0.1.4	cpe:2.3:a:ibm:rational_test_virtualization_server:8.0.1.4:::::::*

Rows per page:

1-10 of 521

References

www-01.ibm.com/support/docview.wss?uid=swg21959298

www.securityfocus.com/bid/75307

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

AI Score

Confidence

Low

EPSS

0.003

Percentile

67.8%

JSON

Related for CVE-2015-1913