CVE-2015-7440

IBM Rational Collaborative Lifecycle Management (CLM) 3.0.1 before 3.0.1.6 iFix7 Interim Fix 1, 4.0.x before 4.0.7 iFix10, 5.0.x before 5.0.2 iFix15, and 6.0.x before 6.0.1 iFix4; Rational Quality Manager (RQM) 3.0.x before 3.0.1.6 iFix7 Interim Fix 1, 4.0.x before 4.0.7 iFix10, 5.0.x before 5.0.2 iFix15, and 6.0.x before 6.0.1 iFix4; Rational Team Concert (RTC) 3.0.x before 3.0.1.6 iFix7 Interim Fix 1, 4.0.x before 4.0.7 iFix10, 5.0.x before 5.0.2 iFix15, and 6.0.x before 6.0.1 iFix4; Rational Requirements Composer (RRC) 3.0.x before 3.0.1.6 iFix7 Interim Fix 1 and 4.0.x before 4.0.7 iFix10; Rational DOORS Next Generation (RDNG) 4.0.x before 4.0.7 iFix10, 5.0.x before 5.0.2 iFix15, and 6.0.x before 6.0.1 iFix4; Rational Engineering Lifecycle Manager (RELM) 4.0.3, 4.0.4, 4.0.5, 4.0.6, and 4.0.7 before iFix10, 5.0.x before 5.0.2 iFix1, and 6.0.x before 6.0.2; Rational Rhapsody Design Manager (Rhapsody DM) 4.0.x before 4.0.7 iFix10, 5.0.x before 5.0.2 iFix15, and 6.0.x before 6.0.1 iFix4; and Rational Software Architect Design Manager (RSA DM) 4.0.x before 4.0.7 iFix10, 5.0.x before 5.0.2 iFix15, and 6.0.x before 6.0.1 iFix4 might allow local users to gain privileges via unspecified vectors. IBM X-Force ID: 108098.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
7.8 HIGH
LOCAL
LOW
LOW
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
ibmCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 15%
VendorProductVersion
ibmrational_collaborative_lifecycle_management
3.0.1 ≤
𝑥
≤ 6.0.1
ibmrational_quality_manager
3.0 ≤
𝑥
≤ 3.0.1.6
ibmrational_quality_manager
4.0 ≤
𝑥
≤ 4.0.7
ibmrational_quality_manager
5.0
ibmrational_quality_manager
5.0.1
ibmrational_quality_manager
5.0.2
ibmrational_quality_manager
6.0
ibmrational_quality_manager
6.0.1
ibmrational_team_concert
3.0 ≤
𝑥
≤ 3.0.6
ibmrational_team_concert
4.0 ≤
𝑥
≤ 4.0.7
ibmrational_team_concert
5.0
ibmrational_team_concert
5.0.1
ibmrational_team_concert
5.0.2
ibmrational_team_concert
6.0
ibmrational_team_concert
6.0.1
ibmrational_requirements_composer
3.0 ≤
𝑥
≤ 3.0.1.6
ibmrational_requirements_composer
4.0 ≤
𝑥
≤ 4.0.7
ibmrational_doors_next_generation
4.0 ≤
𝑥
≤ 4.0.7
ibmrational_doors_next_generation
5.0
ibmrational_doors_next_generation
5.0.1
ibmrational_doors_next_generation
5.0.2
ibmrational_doors_next_generation
6.0.0
ibmrational_doors_next_generation
6.0.1
ibmrational_engineering_lifecycle_manager
4.0.3 ≤
𝑥
≤ 4.0.7
ibmrational_engineering_lifecycle_manager
5.0
ibmrational_engineering_lifecycle_manager
5.0.1
ibmrational_engineering_lifecycle_manager
5.0.2
ibmrational_engineering_lifecycle_manager
6.0
ibmrational_engineering_lifecycle_manager
6.0.1
ibmrational_rhapsody_design_manager
4.0 ≤
𝑥
≤ 4.0.7
ibmrational_rhapsody_design_manager
5.0
ibmrational_rhapsody_design_manager
5.0.1
ibmrational_rhapsody_design_manager
5.0.2
ibmrational_rhapsody_design_manager
6.0
ibmrational_rhapsody_design_manager
6.0.1
ibmrational_software_architect_design_manager
4.0 ≤
𝑥
≤ 4.0.7
ibmrational_software_architect_design_manager
5.0
ibmrational_software_architect_design_manager
5.0.1
ibmrational_software_architect_design_manager
5.0.2
ibmrational_software_architect_design_manager
6.0
ibmrational_software_architect_design_manager
6.0.1
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://www-01.ibm.com/support/docview.wss?uid=swg21982747
https://exchange.xforce.ibmcloud.com/vulnerabilities/108098
http://www-01.ibm.com/support/docview.wss?uid=swg21982747
https://exchange.xforce.ibmcloud.com/vulnerabilities/108098