CVE-2016-0325
Published on: 11/24/2016 12:00:00 AM UTC
Last Modified on: 03/23/2021 11:27:13 PM UTC
Certain versions of Rational Team Concert from Ibm contain the following vulnerability:
IBM Rational Collaborative Lifecycle Management 3.0.1.6 before iFix8, 4.0 before 4.0.7 iFix11, 5.0 before 5.0.2 iFix18, and 6.0 before 6.0.2 iFix5; Rational Quality Manager 3.0.1.6 before iFix8, 4.0 before 4.0.7 iFix11, 5.0 before 5.0.2 iFix18, and 6.0 before 6.0.2 iFix5; Rational Team Concert 3.0.1.6 before iFix8, 4.0 before 4.0.7 iFix11, 5.0 before 5.0.2 iFix18, and 6.0 before 6.0.2 iFix5; Rational DOORS Next Generation 4.0 before 4.0.7 iFix11, 5.0 before 5.0.2 iFix18, and 6.0 before 6.0.2 iFix5; Rational Engineering Lifecycle Manager 4.x before 4.0.7 iFix11, 5.0 before 5.0.2 iFix18, and 6.0 before 6.0.2 iFix5; Rational Rhapsody Design Manager 4.0 before 4.0.7 iFix11, 5.0 before 5.0.2 iFix18, and 6.0 before 6.0.2 iFix5; and Rational Software Architect Design Manager 4.0 before 4.0.7 iFix11, 5.0 before 5.0.2 iFix18, and 6.0 before 6.0.2 iFix5 allow remote authenticated users to execute arbitrary OS commands via a crafted request.
- CVE-2016-0325 has been assigned by
[email protected] to track the vulnerability - currently rated as MEDIUM severity.
CVSS3 Score: 6.3 - MEDIUM
Attack Vector ⓘ |
Attack Complexity |
Privileges Required |
User Interaction |
|
---|---|---|---|---|
NETWORK | LOW | LOW | NONE | |
Scope | Confidentiality Impact |
Integrity Impact |
Availability Impact |
|
UNCHANGED | LOW | LOW | LOW |
CVSS2 Score: 7.5 - HIGH
Access Vector ⓘ |
Access Complexity |
Authentication |
---|---|---|
NETWORK | LOW | NONE |
Confidentiality Impact |
Integrity Impact |
Availability Impact |
PARTIAL | PARTIAL | PARTIAL |
CVE References
Description | Tags ⓘ | Link |
---|---|---|
Multiple IBM Products CVE-2016-0325 Remote Command Injection Vulnerability | cve.report (archive) text/html |
![]() |
IBM Security Bulletin: Multiple vulnerabilities affect multiple IBM Rational products based on IBM Jazz technology - United States | Vendor Advisory www-01.ibm.com text/html |
![]() |
Known Affected Configurations (CPE V2.3)
Type | Vendor | Product | Version | Update | Edition | Language |
---|---|---|---|---|---|---|
Application | Ibm | Rational Team Concert | 3.0.1.6 | All | All | All |
Application | Ibm | Rational Team Concert | 4.0.0 | All | All | All |
Application | Ibm | Rational Team Concert | 4.0.1 | All | All | All |
Application | Ibm | Rational Team Concert | 4.0.2 | All | All | All |
Application | Ibm | Rational Team Concert | 4.0.3 | All | All | All |
Application | Ibm | Rational Team Concert | 4.0.4 | All | All | All |
Application | Ibm | Rational Team Concert | 4.0.5 | All | All | All |
Application | Ibm | Rational Team Concert | 4.0.6 | All | All | All |
Application | Ibm | Rational Team Concert | 4.0.7 | All | All | All |
Application | Ibm | Rational Team Concert | 5.0.0 | All | All | All |
Application | Ibm | Rational Team Concert | 5.0.1 | All | All | All |
Application | Ibm | Rational Team Concert | 5.0.2 | All | All | All |
Application | Ibm | Rational Team Concert | 6.0.0 | All | All | All |
Application | Ibm | Rational Team Concert | 6.0.1 | All | All | All |
Application | Ibm | Rational Team Concert | 6.0.2 | All | All | All |
Application | Ibm | Rational Team Concert | 3.0.1.6 | All | All | All |
Application | Ibm | Rational Team Concert | 4.0.0 | All | All | All |
Application | Ibm | Rational Team Concert | 4.0.1 | All | All | All |
Application | Ibm | Rational Team Concert | 4.0.2 | All | All | All |
Application | Ibm | Rational Team Concert | 4.0.3 | All | All | All |
Application | Ibm | Rational Team Concert | 4.0.4 | All | All | All |
Application | Ibm | Rational Team Concert | 4.0.5 | All | All | All |
Application | Ibm | Rational Team Concert | 4.0.6 | All | All | All |
Application | Ibm | Rational Team Concert | 4.0.7 | All | All | All |
Application | Ibm | Rational Team Concert | 5.0.0 | All | All | All |
Application | Ibm | Rational Team Concert | 5.0.1 | All | All | All |
Application | Ibm | Rational Team Concert | 5.0.2 | All | All | All |
Application | Ibm | Rational Team Concert | 6.0.0 | All | All | All |
Application | Ibm | Rational Team Concert | 6.0.1 | All | All | All |
Application | Ibm | Rational Team Concert | 6.0.2 | All | All | All |
- cpe:2.3:a:ibm:rational_team_concert:3.0.1.6:*:*:*:*:*:*:*:
- cpe:2.3:a:ibm:rational_team_concert:4.0.0:*:*:*:*:*:*:*:
- cpe:2.3:a:ibm:rational_team_concert:4.0.1:*:*:*:*:*:*:*:
- cpe:2.3:a:ibm:rational_team_concert:4.0.2:*:*:*:*:*:*:*:
- cpe:2.3:a:ibm:rational_team_concert:4.0.3:*:*:*:*:*:*:*:
- cpe:2.3:a:ibm:rational_team_concert:4.0.4:*:*:*:*:*:*:*:
- cpe:2.3:a:ibm:rational_team_concert:4.0.5:*:*:*:*:*:*:*:
- cpe:2.3:a:ibm:rational_team_concert:4.0.6:*:*:*:*:*:*:*:
- cpe:2.3:a:ibm:rational_team_concert:4.0.7:*:*:*:*:*:*:*:
- cpe:2.3:a:ibm:rational_team_concert:5.0.0:*:*:*:*:*:*:*:
- cpe:2.3:a:ibm:rational_team_concert:5.0.1:*:*:*:*:*:*:*:
- cpe:2.3:a:ibm:rational_team_concert:5.0.2:*:*:*:*:*:*:*:
- cpe:2.3:a:ibm:rational_team_concert:6.0.0:*:*:*:*:*:*:*:
- cpe:2.3:a:ibm:rational_team_concert:6.0.1:*:*:*:*:*:*:*:
- cpe:2.3:a:ibm:rational_team_concert:6.0.2:*:*:*:*:*:*:*:
- cpe:2.3:a:ibm:rational_team_concert:3.0.1.6:*:*:*:*:*:*:*:
- cpe:2.3:a:ibm:rational_team_concert:4.0.0:*:*:*:*:*:*:*:
- cpe:2.3:a:ibm:rational_team_concert:4.0.1:*:*:*:*:*:*:*:
- cpe:2.3:a:ibm:rational_team_concert:4.0.2:*:*:*:*:*:*:*:
- cpe:2.3:a:ibm:rational_team_concert:4.0.3:*:*:*:*:*:*:*:
- cpe:2.3:a:ibm:rational_team_concert:4.0.4:*:*:*:*:*:*:*:
- cpe:2.3:a:ibm:rational_team_concert:4.0.5:*:*:*:*:*:*:*:
- cpe:2.3:a:ibm:rational_team_concert:4.0.6:*:*:*:*:*:*:*:
- cpe:2.3:a:ibm:rational_team_concert:4.0.7:*:*:*:*:*:*:*:
- cpe:2.3:a:ibm:rational_team_concert:5.0.0:*:*:*:*:*:*:*:
- cpe:2.3:a:ibm:rational_team_concert:5.0.1:*:*:*:*:*:*:*:
- cpe:2.3:a:ibm:rational_team_concert:5.0.2:*:*:*:*:*:*:*:
- cpe:2.3:a:ibm:rational_team_concert:6.0.0:*:*:*:*:*:*:*:
- cpe:2.3:a:ibm:rational_team_concert:6.0.1:*:*:*:*:*:*:*:
- cpe:2.3:a:ibm:rational_team_concert:6.0.2:*:*:*:*:*:*:*: