{"containers":{"cna":{"affected":[{"product":"Rational Rhapsody Design Manager","vendor":"IBM","versions":[{"status":"affected","version":"6.0"},{"status":"affected","version":"6.0.1"},{"status":"affected","version":"6.0.2"},{"status":"affected","version":"6.0.3"},{"status":"affected","version":"6.0.4"},{"status":"affected","version":"6.0.5"},{"status":"affected","version":"6.0.6"},{"status":"affected","version":"6.0.6.1"}]}],"datePublic":"2020-02-18T00:00:00.000Z","descriptions":[{"lang":"en","value":"IBM Jazz Foundation 6.0, 6.0.1, 6.0.2, 6.0.3, 6.0.4, 6.0.5, 6.0.6, and 6.0.6.1 could allow an authenticated user to obtain sensitive information that could be used in further attacks against the system. IBM X-Force ID: 163654."}],"metrics":[{"cvssV3_0":{"attackComplexity":"LOW","attackVector":"NETWORK","availabilityImpact":"NONE","baseScore":4.3,"baseSeverity":"MEDIUM","confidentialityImpact":"LOW","exploitCodeMaturity":"UNPROVEN","integrityImpact":"NONE","privilegesRequired":"LOW","remediationLevel":"OFFICIAL_FIX","reportConfidence":"CONFIRMED","scope":"UNCHANGED","temporalScore":3.8,"temporalSeverity":"LOW","userInteraction":"NONE","vectorString":"CVSS:3.0/A:N/PR:L/AC:L/C:L/S:U/UI:N/AV:N/I:N/E:U/RC:C/RL:O","version":"3.0"}}],"problemTypes":[{"descriptions":[{"description":"Obtain Information","lang":"en","type":"text"}]}],"providerMetadata":{"dateUpdated":"2020-02-19T15:15:44.000Z","orgId":"9a959283-ebb5-44b6-b705-dcc2bbced522","shortName":"ibm"},"references":[{"tags":["x_refsource_CONFIRM"],"url":"https://www.ibm.com/support/pages/node/2867997"},{"name":"ibm-jazz-cve20194457-info-disc (163654)","tags":["vdb-entry","x_refsource_XF"],"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/163654"}],"x_legacyV4Record":{"CVE_data_meta":{"ASSIGNER":"psirt@us.ibm.com","DATE_PUBLIC":"2020-02-18T00:00:00","ID":"CVE-2019-4457","STATE":"PUBLIC"},"affects":{"vendor":{"vendor_data":[{"product":{"product_data":[{"product_name":"Rational Rhapsody Design Manager","version":{"version_data":[{"version_value":"6.0"},{"version_value":"6.0.1"},{"version_value":"6.0.2"},{"version_value":"6.0.3"},{"version_value":"6.0.4"},{"version_value":"6.0.5"},{"version_value":"6.0.6"},{"version_value":"6.0.6.1"}]}}]},"vendor_name":"IBM"}]}},"data_format":"MITRE","data_type":"CVE","data_version":"4.0","description":{"description_data":[{"lang":"eng","value":"IBM Jazz Foundation 6.0, 6.0.1, 6.0.2, 6.0.3, 6.0.4, 6.0.5, 6.0.6, and 6.0.6.1 could allow an authenticated user to obtain sensitive information that could be used in further attacks against the system. IBM X-Force ID: 163654."}]},"impact":{"cvssv3":{"BM":{"A":"N","AC":"L","AV":"N","C":"L","I":"N","PR":"L","S":"U","UI":"N"},"TM":{"E":"U","RC":"C","RL":"O"}}},"problemtype":{"problemtype_data":[{"description":[{"lang":"eng","value":"Obtain Information"}]}]},"references":{"reference_data":[{"name":"https://www.ibm.com/support/pages/node/2867997","refsource":"CONFIRM","title":"IBM Security Bulletin 2867997 (Rational Rhapsody Design Manager)","url":"https://www.ibm.com/support/pages/node/2867997"},{"name":"ibm-jazz-cve20194457-info-disc (163654)","refsource":"XF","title":"X-Force Vulnerability Report","url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/163654"}]}}},"adp":[{"providerMetadata":{"orgId":"af854a3a-2127-422b-91ae-364da2661108","shortName":"CVE","dateUpdated":"2024-08-04T19:33:37.912Z"},"title":"CVE Program Container","references":[{"tags":["x_refsource_CONFIRM","x_transferred"],"url":"https://www.ibm.com/support/pages/node/2867997"},{"name":"ibm-jazz-cve20194457-info-disc (163654)","tags":["vdb-entry","x_refsource_XF","x_transferred"],"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/163654"}]}]},"cveMetadata":{"assignerOrgId":"9a959283-ebb5-44b6-b705-dcc2bbced522","assignerShortName":"ibm","cveId":"CVE-2019-4457","datePublished":"2020-02-19T15:15:44.644Z","dateReserved":"2019-01-03T00:00:00.000Z","dateUpdated":"2024-09-16T17:49:02.373Z","state":"PUBLISHED"},"dataType":"CVE_RECORD","dataVersion":"5.1"}