IBM Rational Focal Point 6.4.x and 6.5.x before 6.5.2.3 and 6.6.x before 6.6.1 allows remote authenticated users to modify data via vectors involving a direct object reference.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Rational_focal_point | Ibm | 6.4 (including) | 6.4 (including) |
| Rational_focal_point | Ibm | 6.4.0.1 (including) | 6.4.0.1 (including) |
| Rational_focal_point | Ibm | 6.4.1.0 (including) | 6.4.1.0 (including) |
| Rational_focal_point | Ibm | 6.4.1.1 (including) | 6.4.1.1 (including) |
| Rational_focal_point | Ibm | 6.4.1.2 (including) | 6.4.1.2 (including) |
| Rational_focal_point | Ibm | 6.4.1.3 (including) | 6.4.1.3 (including) |
| Rational_focal_point | Ibm | 6.5 (including) | 6.5 (including) |
| Rational_focal_point | Ibm | 6.5.0.1 (including) | 6.5.0.1 (including) |
| Rational_focal_point | Ibm | 6.5.0.2 (including) | 6.5.0.2 (including) |
| Rational_focal_point | Ibm | 6.5.1 (including) | 6.5.1 (including) |
| Rational_focal_point | Ibm | 6.5.1.1 (including) | 6.5.1.1 (including) |
| Rational_focal_point | Ibm | 6.5.2 (including) | 6.5.2 (including) |
| Rational_focal_point | Ibm | 6.5.2.1 (including) | 6.5.2.1 (including) |
| Rational_focal_point | Ibm | 6.5.2.2 (including) | 6.5.2.2 (including) |
| Rational_focal_point | Ibm | 6.5.2.3 (including) | 6.5.2.3 (including) |
| Rational_focal_point | Ibm | 6.6 (including) | 6.6 (including) |
| Rational_focal_point | Ibm | 6.6.0.1 (including) | 6.6.0.1 (including) |