CVE-2017-1239: Infoleak
First published: Tue Jul 03 2018(Updated: )
IBM Quality Manager (RQM) 5.0.x and 6.0 through 6.0.5 could reveal sensitive information in HTTP 500 Internal Server Error responses. IBM X-Force ID: 124357.
Credit: psirt@us.ibm.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| IBM Rational Quality Manager | >=5.0<=5.0.2 | |
| IBM Rational Quality Manager | >=6.0<=6.0.5 | |
| IBM Rational Collaborative Lifecycle Management | >=5.0.0<=6.0.3 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this IBM Quality Manager vulnerability?
The vulnerability ID for this IBM Quality Manager vulnerability is CVE-2017-1239.
What is the severity rating of CVE-2017-1239?
The severity rating of CVE-2017-1239 is medium, with a score of 5.3.
How can this vulnerability be exploited?
This vulnerability can be exploited by revealing sensitive information in HTTP 500 Internal Server Error responses.
What versions of IBM Quality Manager are affected by CVE-2017-1239?
IBM Quality Manager versions 5.0.x and 6.0 through 6.0.5 are affected by CVE-2017-1239.
Is there a fix or patch available for CVE-2017-1239?
Yes, IBM has provided fixes for this vulnerability. Please refer to the IBM support document for more information.
- collector/nvd-index
- agent/weakness
- agent/severity
- agent/references
- agent/author
- agent/type
- agent/event
- agent/description
- agent/remedy
- agent/last-modified-date
- agent/tags
- agent/softwarecombine
- agent/first-publish-date
- collector/mitre-cve
- source/MITRE
- vendor/ibm
- canonical/ibm rational quality manager
- version/ibm rational quality manager/5.0
- version/ibm rational quality manager/5.0.2
- version/ibm rational quality manager/6.0
- version/ibm rational quality manager/6.0.5
- canonical/ibm rational collaborative lifecycle management
- version/ibm rational collaborative lifecycle management/5.0.0
- version/ibm rational collaborative lifecycle management/6.0.3