5.9 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N
0.001 Low
EPSS
Percentile
49.8%
All applicable Java SE CVEs published by Oracle as part of their July 2022 Critical Patch Update. Following IBM® Engineering Lifecycle Engineering products are vulnerable to this attack, it has been addressed in this bulletin: IBM Engineering Test Management, BM Jazz Reporting Service , IBM Engineering Requirements Management DOORS Next, IBM Engineering Workflow Management, IBM Engineering Lifecycle Optimization - Publishing, IBM Engineering Lifecycle Optimization - Engineering Insights, Global Configuration Management, Rational Team Concert, Rational Engineering Lifecycle Manager, Rational Publishing Engine
Refer to the security bulletin(s) listed in the Remediation/Fixes section
Version(s) | Affected Product(s) |
---|---|
All | Global Configuration Management |
All | IBM Jazz Reporting Service |
6.0.6, 6.0.6.1 | Rational Team Concert |
Rational DOORS Next Generation | |
IBM Jazz Reporting Service | |
Rational Engineering Lifecycle Manager | |
Rational Publishing Engine | |
7.0, 7.0.1, 7.0.2 | IBM Engineering Workflow Management |
IBM Engineering Requirements Management DOORS Next | |
IBM Jazz Reporting Service | |
IBM Engineering Lifecycle Optimization - Engineering Insights | |
IBM Engineering Lifecycle Optimization - Publishing | |
7.0.1, 7.0.2 | IBM Engineering Test Management |
This vulnerability affects multiple IBM® Engineering Lifecycle Engineering products mentioned above, which uses IBM® SDK, Java™ Technology Edition.
If the Product is deployed on one of the above versions, Please follow the instruction given in the following article
Link - <https://www.ibm.com/support/pages/node/6616533>
None
5.9 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N
0.001 Low
EPSS
Percentile
49.8%