IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2014-3050)

Description

IBM Rational Team Concert (RTC) 3.x before 3.0.1.6 IF3 and 4.x before 4.0.7 does not properly integrate with build engines, which allows remote authenticated users to discover credentials via unspecified vectors.

Remediation

References

CVE-2014-3050

Related Vulnerabilities

Grafana Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2021-43815)

Moodle Other Vulnerability (CVE-2006-4940)

Envoy Proxy Improper Check for Unusual or Exceptional Conditions Vulnerability (CVE-2021-32780)

Joomla Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2020-35612)

PostgreSQL Permissions, Privileges, and Access Controls Vulnerability (CVE-2010-1447)

Severity

Low

Classification

CVE-2014-3050 CWE-200