Vulnerabilities
Misconfiguration
Runtime Security
Compliance
CVE Vulnerabilities

CVE-2020-4964

Published: Apr 12, 2021 | Modified: Apr 13, 2021
CVSS 3.x
4.3
MEDIUM
Source:
NVD
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
CVSS 2.x
4 MEDIUM
AV:N/AC:L/Au:S/C:N/I:P/A:N
RedHat/V2
RedHat/V3
Ubuntu
Additional information
NVDhttps://nvd.nist.gov/vuln/detail/CVE-2020-4964
CWEhttps://cwe.mitre.org/data/definitions/.html

IBM Jazz Team Server products contain an undisclosed vulnerability that could allow an authenticated user to present a customized message on the application which could be used to phish other users. IBM X-Force ID: 192419.

Affected Software

Name Vendor Start Version End Version
Collaborative_lifecycle_management Ibm 6.0.2 (including) 6.0.2 (including)
Collaborative_lifecycle_management Ibm 6.0.6 (including) 6.0.6 (including)
Collaborative_lifecycle_management Ibm 6.0.6.1 (including) 6.0.6.1 (including)
Doors_next Ibm 7.0.0 (including) 7.0.0 (including)
Doors_next Ibm 7.0.1 (including) 7.0.1 (including)
Doors_next Ibm 7.0.2 (including) 7.0.2 (including)
Engineering_insights Ibm 7.0.0 (including) 7.0.0 (including)
Engineering_insights Ibm 7.0.1 (including) 7.0.1 (including)
Engineering_insights Ibm 7.0.2 (including) 7.0.2 (including)
Engineering_lifecycle_management Ibm 7.0.0 (including) 7.0.0 (including)
Engineering_lifecycle_management Ibm 7.0.1 (including) 7.0.1 (including)
Engineering_lifecycle_management Ibm 7.0.2 (including) 7.0.2 (including)
Engineering_requirements_management_doors_next Ibm 6.0.2 (including) 6.0.2 (including)
Engineering_requirements_management_doors_next Ibm 6.0.6 (including) 6.0.6 (including)
Engineering_requirements_management_doors_next Ibm 6.0.6.1 (including) 6.0.6.1 (including)
Engineering_test_management Ibm 7.0.0 (including) 7.0.0 (including)
Engineering_test_management Ibm 7.0.1 (including) 7.0.1 (including)
Engineering_test_management Ibm 7.0.2 (including) 7.0.2 (including)
Engineering_workflow_management Ibm 7.0.0 (including) 7.0.0 (including)
Engineering_workflow_management Ibm 7.0.1 (including) 7.0.1 (including)
Engineering_workflow_management Ibm 7.0.2 (including) 7.0.2 (including)
Rational_engineering_lifecycle_manager Ibm 6.0.2 (including) 6.0.2 (including)
Rational_engineering_lifecycle_manager Ibm 6.0.6 (including) 6.0.6 (including)
Rational_engineering_lifecycle_manager Ibm 6.0.6.1 (including) 6.0.6.1 (including)
Rational_quality_manager Ibm 6.0.2 (including) 6.0.2 (including)
Rational_quality_manager Ibm 6.0.6 (including) 6.0.6 (including)
Rational_quality_manager Ibm 6.0.6.1 (including) 6.0.6.1 (including)
Rational_team_concert Ibm 6.0.2 (including) 6.0.2 (including)
Rational_team_concert Ibm 6.0.6 (including) 6.0.6 (including)
Rational_team_concert Ibm 6.0.6.1 (including) 6.0.6.1 (including)
Removable_media_management Ibm 6.0.2 (including) 6.0.2 (including)
Removable_media_management Ibm 6.0.6 (including) 6.0.6 (including)
Removable_media_management Ibm 6.0.6.1 (including) 6.0.6.1 (including)
Removable_media_management Ibm 7.0.0 (including) 7.0.0 (including)
Removable_media_management Ibm 7.0.1 (including) 7.0.1 (including)
Rhapsody_model_manager Ibm 6.0.2 (including) 6.0.2 (including)
Rhapsody_model_manager Ibm 6.0.6 (including) 6.0.6 (including)
Rhapsody_model_manager Ibm 6.0.6.1 (including) 6.0.6.1 (including)

References

Aqua Security is the largest pure-play cloud native security company, providing customers the freedom to innovate and run their businesses with minimal friction. The Aqua Cloud Native Security Platform provides prevention, detection, and response automation across the entire application lifecycle to secure the build, secure cloud infrastructure and secure running workloads wherever they are deployed.
Copyright © 2024 Aqua Security Software Ltd.   Privacy Policy | Terms of Use