Description

The GIT Integration component in IBM Rational Team Concert (RTC) 5.x before 5.0.2 iFix14 and 6.x before 6.0.1 iFix5 and Rational Collaborative Lifecycle Management 5.x before 5.0.2 iFix14 and 6.x before 6.0.1 iFix5 allows remote authenticated users to obtain sensitive information via a malformed request.

Remediation

References

CVE-2016-2865

Related Vulnerabilities

WordPress Plugin Smartest Way To Design & Customize WordPress Comments & Comment Form-WP Comment Designer Lite includes Backdoor [Only if downloaded via the vendor website] (2.0.3)

Roundcube Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2009-4077)

WordPress Plugin Timetable and Event Schedule by MotoPress Information Disclosure (2.3.19)

WordPress Plugin PowerPress Podcasting by Blubrry Cross-Site Scripting (10.0.1)

PHP Permissions, Privileges, and Access Controls Vulnerability (CVE-2010-3065)

Severity

Medium

Classification

CVE-2016-2865 CWE-200 CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Tags

Missing Update Known Vulnerabilities