IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability - CVE-2015-4962

Jazz Team Server in Jazz Foundation in IBM Rational Collaborative Lifecycle Management (CLM) 3.x and 4.x before 4.0.7 IF9 5.x before 5.0.2 IF9 and 6.x before 6.0.1 Rational Quality Manager (RQM) 3.x before 3.0.1.6 IF7 4.x before 4.0.7 IF9 5.x before 5.0.2 IF9 and 6.x before 6.0.1 Rational Team Concert (RTC) 3.x before 3.0.1.6 IF7 4.x before 4.0.7 IF9 5.x before 5.0.2 IF9 and 6.x before 6.0.1 Rational Requirements Composer (RRC) 3.x before 3.0.1.6 IF7 and 4.x before 4.0.7 IF9 Rational DOORS Next Generation (RDNG) 4.x before 4.0.7 IF9 5.x before 5.0.2 IF9 and 6.x before 6.0.1 Rational Engineering Lifecycle Manager (RELM) 4.x through 4.0.7 5.x through 5.0.2 and 6.x before 6.0.1 Rational Rhapsody Design Manager (DM) 4.x through 4.0.7 5.x through 5.0.2 and 6.x before 6.0.1 and Rational Software Architect Design Manager (DM) 4.x through 4.0.7 5.x through 5.0.2 and 6.x before 6.0.1 uses weak permissions for unspecified project areas which allows remote authenticated users to obtain sensitive information via unknown vectors.