IBM Rational Automation Framework (RAF) 3.x up to and including 3.0.0.5 allows remote malicious users to bypass intended Env Gen Wizard (aka Environment Generation Wizard) access restrictions by visiting context roots in HTTP sessions on port 8080.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
ibm rational automation framework 3.0.0.1 |
||
ibm rational automation framework 3.0.0.2 |
||
ibm rational automation framework 3.0.0.3 |
||
ibm rational automation framework 3.0.0.4 |
||
ibm rational automation framework 3.0 |
||
ibm rational automation framework 3.0.0.5 |