1. Home
  2. CVE Database
  3. CVE-2016-2947
LOW · 2.7

CVE-2016-2947

IBM Rational Collaborative Lifecycle Management 4.0 before 4.0.7 iFix11, 5.0 before 5.0.2 iFix18, and 6.0 before 6.0.2 iFix5; Rational Quality Manager 4.0 before 4.0.7 iFix11, 5.0 before 5.0.2 iFix18,...

Vulnerability Description

IBM Rational Collaborative Lifecycle Management 4.0 before 4.0.7 iFix11, 5.0 before 5.0.2 iFix18, and 6.0 before 6.0.2 iFix5; Rational Quality Manager 4.0 before 4.0.7 iFix11, 5.0 before 5.0.2 iFix18, and 6.0 before 6.0.2 iFix5; Rational Team Concert 4.0 before 4.0.7 iFix11, 5.0 before 5.0.2 iFix18, and 6.0 before 6.0.2 iFix5; Rational DOORS Next Generation 4.0 before 4.0.7 iFix11, 5.0 before 5.0.2 iFix18, and 6.0 before 6.0.2 iFix5; Rational Engineering Lifecycle Manager 4.x before 4.0.7 iFix11, 5.0 before 5.0.2 iFix18, and 6.0 before 6.0.2 iFix5; Rational Rhapsody Design Manager 4.0 before 4.0.7 iFix11, 5.0 before 5.0.2 iFix18, and 6.0 before 6.0.2 iFix5; and Rational Software Architect Design Manager 4.0 before 4.0.7 iFix11, 5.0 before 5.0.2 iFix18, and 6.0 before 6.0.2 iFix5 allow remote authenticated users to obtain sensitive information via unspecified vectors.

CVSS Score

2.7

LOW

CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality
LOW
Integrity
NONE
Availability
NONE

Affected Products

VendorProductVersions
IbmRational Team Concert3.0.1.6
IbmRational Rhapsody Design Manager4.0
IbmRational Software Architect Design Manager4.0.0
IbmRational Doors Next Generation4.0.0
IbmRational Collaborative Lifecycle Management3.0.1.6
IbmRational Engineering Lifecycle Manager4.0.0
IbmRational Quality Manager3.0.1.6

Related Weaknesses (CWE)

CWE-200

References

FAQ

What is CVE-2016-2947?

CVE-2016-2947 is a vulnerability with a CVSS score of 2.7 (LOW). IBM Rational Collaborative Lifecycle Management 4.0 before 4.0.7 iFix11, 5.0 before 5.0.2 iFix18, and 6.0 before 6.0.2 iFix5; Rational Quality Manager 4.0 before 4.0.7 iFix11, 5.0 before 5.0.2 iFix18,...

How severe is CVE-2016-2947?

CVE-2016-2947 has been rated LOW with a CVSS base score of 2.7/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2016-2947?

Check the references section above for vendor advisories and patch information. Affected products include: Ibm Rational Team Concert, Ibm Rational Rhapsody Design Manager, Ibm Rational Software Architect Design Manager, Ibm Rational Doors Next Generation, Ibm Rational Collaborative Lifecycle Management.