What is the vulnerability ID for this IBM Jazz Team Server vulnerability?

The vulnerability ID for this IBM Jazz Team Server vulnerability is CVE-2017-1734.

What is the severity of CVE-2017-1734?

The severity of CVE-2017-1734 is medium with a severity value of 4.3.

How can I fix this vulnerability?

To fix this vulnerability, it is recommended to apply the necessary security patches and updates provided by IBM.

Where can I find more information about this vulnerability?

More information about this vulnerability can be found on the IBM support website at http://www.ibm.com/support/docview.wss?uid=swg22015635 and the IBM X-Force Exchange at https://exchange.xforce.ibmcloud.com/vulnerabilities/134915.

Vulnerability/
CVE-2017-1734

medium

4.3

CWE

200

24/4/2018

16/9/2024

CVE-2017-1734: Infoleak

Q: Which IBM Rational products are affected by this vulnerability?

This vulnerability affects the following IBM Rational products: Collaborative Lifecycle Management (CLM), Rational DOORS Next Generation (RDNG), Rational Engineering Lifecycle Manager (RELM), Rational Team Concert (RTC), Rational Quality Manager (RQM), Rational Rhapsody Design Manager (Rhapsody Design Manager), and Rational Software Architect Design Manager (Software Architect Design Manager).

First published: Tue Apr 24 2018(Updated: )

IBM Jazz Team Server affecting the following IBM Rational Products: Collaborative Lifecycle Management (CLM), Rational DOORS Next Generation (RDNG), Rational Engineering Lifecycle Manager (RELM), Rational Team Concert (RTC), Rational Quality Manager (RQM), Rational Rhapsody Design Manager (Rhapsody DM), and Rational Software Architect (RSA DM) stores potentially sensitive information in a cache that could be read by authenticated users. IBM X-Force ID: 134915.

Credit: psirt@us.ibm.com

Affected Software	Affected Version	How to fix
IBM Rational Collaborative Lifecycle Management	>5.0<=6.0.5
IBM Rational DOORS Next Generation	>=5.0<=5.0.2
IBM Rational DOORS Next Generation	>=6.0<=6.0.5
IBM Rational Engineering Lifecycle Manager	>=5.0<=5.0.2
IBM Rational Engineering Lifecycle Manager	>=6.0<=6.0.5
IBM Rational Quality Manager	>=5.0<=5.0.2
IBM Rational Quality Manager	>=6.0<=6.0.5
IBM Rational Rhapsody Design Manager	>=5.0<=5.0.2
IBM Rational Rhapsody Design Manager	>=6.0<=6.0.5
IBM Rational Software Architect Design Manager	>=5.0<=5.0.2
IBM Rational Software Architect Design Manager	>=6.0<=6.0.1
IBM Rational Team Concert	>=5.0<=5.0.2
IBM Rational Team Concert	>=6.0<=6.0.5

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the vulnerability ID for this IBM Jazz Team Server vulnerability?
The vulnerability ID for this IBM Jazz Team Server vulnerability is CVE-2017-1734.
Which IBM Rational products are affected by this vulnerability?
This vulnerability affects the following IBM Rational products: Collaborative Lifecycle Management (CLM), Rational DOORS Next Generation (RDNG), Rational Engineering Lifecycle Manager (RELM), Rational Team Concert (RTC), Rational Quality Manager (RQM), Rational Rhapsody Design Manager (Rhapsody Design Manager), and Rational Software Architect Design Manager (Software Architect Design Manager).
What is the severity of CVE-2017-1734?
The severity of CVE-2017-1734 is medium with a severity value of 4.3.
How can I fix this vulnerability?
To fix this vulnerability, it is recommended to apply the necessary security patches and updates provided by IBM.
Where can I find more information about this vulnerability?
More information about this vulnerability can be found on the IBM support website at http://www.ibm.com/support/docview.wss?uid=swg22015635 and the IBM X-Force Exchange at https://exchange.xforce.ibmcloud.com/vulnerabilities/134915.

collector/nvd-index
agent/weakness
agent/severity
agent/author
agent/tags
agent/type
agent/description
agent/references
agent/event
agent/first-publish-date
agent/last-modified-date
agent/softwarecombine
collector/mitre-cve
source/MITRE
vendor/ibm
canonical/ibm rational collaborative lifecycle management
version/ibm rational collaborative lifecycle management/6.0.5
canonical/ibm rational doors next generation
version/ibm rational doors next generation/5.0
version/ibm rational doors next generation/5.0.2
version/ibm rational doors next generation/6.0
version/ibm rational doors next generation/6.0.5
canonical/ibm rational engineering lifecycle manager
version/ibm rational engineering lifecycle manager/5.0
version/ibm rational engineering lifecycle manager/5.0.2
version/ibm rational engineering lifecycle manager/6.0
version/ibm rational engineering lifecycle manager/6.0.5
canonical/ibm rational quality manager
version/ibm rational quality manager/5.0
version/ibm rational quality manager/5.0.2
version/ibm rational quality manager/6.0
version/ibm rational quality manager/6.0.5
canonical/ibm rational rhapsody design manager
version/ibm rational rhapsody design manager/5.0
version/ibm rational rhapsody design manager/5.0.2
version/ibm rational rhapsody design manager/6.0
version/ibm rational rhapsody design manager/6.0.5
canonical/ibm rational software architect design manager
version/ibm rational software architect design manager/5.0
version/ibm rational software architect design manager/5.0.2
version/ibm rational software architect design manager/6.0
version/ibm rational software architect design manager/6.0.1
canonical/ibm rational team concert
version/ibm rational team concert/5.0
version/ibm rational team concert/5.0.2
version/ibm rational team concert/6.0
version/ibm rational team concert/6.0.5

CVE-2017-1734: Infoleak

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the vulnerability ID for this IBM Jazz Team Server vulnerability?

Which IBM Rational products are affected by this vulnerability?

What is the severity of CVE-2017-1734?

How can I fix this vulnerability?

Where can I find more information about this vulnerability?

Company

Resources

Contact