IBM Jazz applications (IBM Rational Collaborative Lifecycle Management 5.0 up to and including 5.02 and 6.0 up to and including 6.0.6, IBM Rational DOORS Next Generation 5.0 up to and including 5.02 and 6.0 up to and including 6.0.6, IBM Rational Engineering Lifecycle Manager 5.0 up to and including 5.02 and 6.0 up to and including 6.0.6, IBM Rational Quality Manager 5.0 up to and including 5.02 and 6.0 up to and including 6.0.6, IBM Rational Rhapsody Design Manager 5.0 up to and including 5.02 and 6.0 up to and including 6.0.6, IBM Rational Software Architect Design Manager 5.0 up to and including 5.02 and 6.0 up to and including 6.0.1, IBM Rational Team Concert 5.0 up to and including 5.02 and 6.0 up to and including 6.0.6) could allow a remote malicious user to obtain sensitive information, caused by the failure to properly enable HTTP Strict Transport Security. An attacker could exploit this vulnerability to obtain sensitive information using man in the middle techniques. IBM X-Force ID: 145609.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
ibm rational engineering lifecycle manager |
||
ibm rational rhapsody design manager |
||
ibm rational collaborative lifecycle management |
||
ibm rational quality manager |
||
ibm rational team concert |
||
ibm rational doors next generation |
||
ibm rational software architect design manager |
Vulmon