The Administration and Reporting Tool in IBM Rational License Key Server (RLKS) 8.1.4.x prior to 8.1.4.4 allows remote authenticated users to bypass authorization checks and visit unspecified URLs with license-usage data via a DESCRIBE clause in a SPARQL query.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
ibm rational license key server 8.1.4 |
||
ibm rational license key server 8.1.4.2 |
||
ibm rational license key server 8.1.4.3 |