The Jazz help system in IBM Rational Collaborative Lifecycle Management 4.0 through 5.0.2, Rational Quality Manager 4.0 through 4.0.7 and 5.0 through 5.0.2, Rational Team Concert 4.0 through 4.0.7 and 5.0 through 5.0.2, Rational Requirements Composer 4.0 through 4.0.7, Rational DOORS Next Generation 4.0 through 4.0.7 and 5.0 through 5.0.2, Rational Engineering Lifecycle Manager 4.0.3 through 4.0.7 and 5.0 through 5.0.2, Rational Rhapsody Design Manager 4.0 through 4.0.7 and 5.0 through 5.0.2, and Rational Software Architect Design Manager 4.0 through 4.0.7 and 5.0 through 5.0.2 allows remote attackers to read JSP source code via a crafted request.
                
            References
                    | Link | Resource | 
|---|---|
| http://www-01.ibm.com/support/docview.wss?uid=swg21882770 | Patch Vendor Advisory | 
| http://www-01.ibm.com/support/docview.wss?uid=swg21882770 | Patch Vendor Advisory | 
Configurations
                    Configuration 1 (hide)
| 
 | 
Configuration 2 (hide)
| 
 | 
Configuration 3 (hide)
| 
 | 
Configuration 4 (hide)
| 
 | 
Configuration 5 (hide)
| 
 | 
Configuration 6 (hide)
| 
 | 
Configuration 7 (hide)
| 
 | 
Configuration 8 (hide)
| 
 | 
History
                    No history.
Information
                Published : 2015-04-27 11:59
Updated : 2025-04-12 10:46
NVD link : CVE-2015-0113
Mitre link : CVE-2015-0113
CVE.ORG link : CVE-2015-0113
JSON object : View
Products Affected
                ibm
- rational_engineering_lifecycle_manager
- rational_collaborative_lifecycle_management
- rational_doors_next_generation
- rational_team_concert
- rational_rhapsody_design_manager
- rational_requirements_composer
- rational_quality_manager
- rational_software_architect_design_manager
CWE
                
                    
                        
                        CWE-200
                        
            Exposure of Sensitive Information to an Unauthorized Actor
