Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability - CVE-2018-1606 - Vulnerability Database
IBM RTC

IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability - CVE-2018-1606

Medium
Reference: CVE-2018-1606
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2018-1606
Title: IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
Overview:

IBM Jazz based applications (IBM Rational Collaborative Lifecycle Management 5.0 through 5.02 and 6.0 through 6.0.6 IBM Rational DOORS Next Generation 5.0 through 5.02 and 6.0 through 6.0.6 IBM Rational Engineering Lifecycle Manager 5.0 through 5.02 and 6.0 through 6.0.6 IBM Rational Quality Manager 5.0 through 5.02 and 6.0 through 6.0.6 IBM Rational Rhapsody Design Manager 5.0 through 5.02 and 6.0 through 6.0.6 IBM Rational Software Architect Design Manager 5.0 through 5.02 and 6.0 through 6.0.1 IBM Rational Team Concert 5.0 through 5.02 and 6.0 through 6.0.6) could allow an authenticated user to obtain sensitive information from an error message that could be used in further attacks against the system. IBM X-Force ID: 143796.