NVD - Results

Sort results by:

Search Results (Refine Search)

Search Parameters:

Results Type: Overview
Keyword (text search): cpe:2.3:a:ibm:rational_license_key_server:8.1.4:*:*:*:*:*:*:*
CPE Name Search: true

There are 5 matching records.

Displaying matches 1 through 5.

Vuln ID	Summary	CVSS Severity
CVE-2015-5045	The Administration and Reporting tool in IBM Rational License Key Server (RLKS) before 8.1.4.9 iFix 04 allows local users to obtain sensitive information via unspecified vectors. IBM X-Force ID: 106938. Published: March 26, 2018; 2:29:00 PM -0400	V4.0:(not available) V3.0: 3.3 LOW V2.0: 2.1 LOW
CVE-2015-1907	The Administration and Reporting Tool in IBM Rational License Key Server (RLKS) 8.1.4 before 8.1.4.7 allows remote authenticated users to read cookies via unspecified vectors. Published: May 07, 2015; 9:59:01 PM -0400	V4.0:(not available) V3.x:(not available) V2.0: 4.0 MEDIUM
CVE-2014-4756	The Administration and Reporting Tool in IBM Rational License Key Server (RLKS) 8.1.4.x before 8.1.4.4 allows remote authenticated users to hijack sessions via unspecified vectors. Published: September 10, 2014; 6:55:07 AM -0400	V4.0:(not available) V3.x:(not available) V2.0: 3.5 LOW
CVE-2014-3079	The Administration and Reporting Tool in IBM Rational License Key Server (RLKS) 8.1.4.x before 8.1.4.4 allows remote authenticated users to bypass authorization checks and visit unspecified URLs with license-usage data via a DESCRIBE clause in a SPARQL query. Published: September 10, 2014; 6:55:07 AM -0400	V4.0:(not available) V3.x:(not available) V2.0: 2.1 LOW
CVE-2014-0909	The Administration and Reporting Tool in IBM Rational License Key Server (RLKS) 8.1.4.x before 8.1.4.4 does not set the secure flag for the session cookie in an https session, which makes it easier for remote attackers to capture this cookie by intercepting its transmission within an http session. Published: September 10, 2014; 6:55:07 AM -0400	V4.0:(not available) V3.x:(not available) V2.0: 5.0 MEDIUM