cvelist/2019/4xxx/CVE-2019-4084.json

{
    "CVE_data_meta": {
        "DATE_PUBLIC": "2019-06-25T00:00:00",
        "ID": "CVE-2019-4084",
        "STATE": "PUBLIC",
        "ASSIGNER": "psirt@us.ibm.com"
    },
    "description": {
        "description_data": [
            {
                "lang": "eng",
                "value": "IBM Jazz Foundation products (IBM Rational Collaborative Lifecycle Management 6.0 through 6.0.6.1) could allow an authenticated user to obtain sensitive information from CLM Applications that could be used in further attacks against the system. IBM X-Force ID: 157384."
            }
        ]
    },
    "references": {
        "reference_data": [
            {
                "url": "http://www.ibm.com/support/docview.wss?uid=ibm10956525",
                "name": "http://www.ibm.com/support/docview.wss?uid=ibm10956525",
                "refsource": "CONFIRM",
                "title": "IBM Security Bulletin 0956525 (Rational Collaborative Lifecycle Management)"
            },
            {
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/157384",
                "name": "ibm-jazz-cve20194084-info-disc (157384)",
                "refsource": "XF",
                "title": "X-Force Vulnerability Report"
            }
        ]
    },
    "data_type": "CVE",
    "data_version": "4.0",
    "data_format": "MITRE",
    "affects": {
        "vendor": {
            "vendor_data": [
                {
                    "vendor_name": "IBM",
                    "product": {
                        "product_data": [
                            {
                                "version": {
                                    "version_data": [
                                        {
                                            "version_value": "6.0"
                                        },
                                        {
                                            "version_value": "6.0.1"
                                        },
                                        {
                                            "version_value": "6.0.2"
                                        },
                                        {
                                            "version_value": "6.0.3"
                                        },
                                        {
                                            "version_value": "6.0.4"
                                        },
                                        {
                                            "version_value": "6.0.5"
                                        },
                                        {
                                            "version_value": "6.0.6"
                                        },
                                        {
                                            "version_value": "6.0.6.1"
                                        }
                                    ]
                                },
                                "product_name": "Rational Collaborative Lifecycle Management"
                            }
                        ]
                    }
                }
            ]
        }
    },
    "impact": {
        "cvssv3": {
            "TM": {
                "RC": "C",
                "E": "U",
                "RL": "O"
            },
            "BM": {
                "UI": "N",
                "SCORE": "4.300",
                "AV": "N",
                "PR": "L",
                "S": "U",
                "I": "N",
                "C": "L",
                "AC": "L",
                "A": "N"
            }
        }
    },
    "problemtype": {
        "problemtype_data": [
            {
                "description": [
                    {
                        "value": "Obtain Information",
                        "lang": "eng"
                    }
                ]
            }
        ]
    }
}
- Synchronized data. 2019-01-03 15:04:29 -05:00			`{`
"-Synchronized-Data." 2019-06-27 14:00:56 +00:00			`"CVE_data_meta": {`
			`"DATE_PUBLIC": "2019-06-25T00:00:00",`
			`"ID": "CVE-2019-4084",`
			`"STATE": "PUBLIC",`
			`"ASSIGNER": "psirt@us.ibm.com"`
			`},`
			`"description": {`
			`"description_data": [`
"-Synchronized-Data." 2019-03-18 06:26:01 +00:00			`{`
"-Synchronized-Data." 2019-06-27 14:00:56 +00:00			`"lang": "eng",`
			`"value": "IBM Jazz Foundation products (IBM Rational Collaborative Lifecycle Management 6.0 through 6.0.6.1) could allow an authenticated user to obtain sensitive information from CLM Applications that could be used in further attacks against the system. IBM X-Force ID: 157384."`
"-Synchronized-Data." 2019-03-18 06:26:01 +00:00			`}`
"-Synchronized-Data." 2019-06-27 14:00:56 +00:00			`]`
			`},`
			`"references": {`
			`"reference_data": [`
			`{`
			`"url": "http://www.ibm.com/support/docview.wss?uid=ibm10956525",`
			`"name": "http://www.ibm.com/support/docview.wss?uid=ibm10956525",`
			`"refsource": "CONFIRM",`
			`"title": "IBM Security Bulletin 0956525 (Rational Collaborative Lifecycle Management)"`
			`},`
			`{`
			`"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/157384",`
			`"name": "ibm-jazz-cve20194084-info-disc (157384)",`
			`"refsource": "XF",`
			`"title": "X-Force Vulnerability Report"`
			`}`
			`]`
			`},`
			`"data_type": "CVE",`
			`"data_version": "4.0",`
			`"data_format": "MITRE",`
			`"affects": {`
			`"vendor": {`
			`"vendor_data": [`
			`{`
			`"vendor_name": "IBM",`
			`"product": {`
			`"product_data": [`
			`{`
			`"version": {`
			`"version_data": [`
			`{`
			`"version_value": "6.0"`
			`},`
			`{`
			`"version_value": "6.0.1"`
			`},`
			`{`
			`"version_value": "6.0.2"`
			`},`
			`{`
			`"version_value": "6.0.3"`
			`},`
			`{`
			`"version_value": "6.0.4"`
			`},`
			`{`
			`"version_value": "6.0.5"`
			`},`
			`{`
			`"version_value": "6.0.6"`
			`},`
			`{`
			`"version_value": "6.0.6.1"`
			`}`
			`]`
			`},`
			`"product_name": "Rational Collaborative Lifecycle Management"`
			`}`
			`]`
			`}`
			`}`
IBM20190627-9023 Added CVE-2018-1734, CVE-2019-4252, CVE-2019-4083, CVE-2019-4249, CVE-2018-1892, CVE-2018-1760, CVE-2019-4250, CVE-2018-1826, CVE-2018-1758, CVE-2018-1893, CVE-2018-1828, CVE-2018-1827, CVE-2019-4084 2019-06-27 09:00:23 -04:00			`]`
"-Synchronized-Data." 2019-06-27 14:00:56 +00:00			`}`
			`},`
			`"impact": {`
			`"cvssv3": {`
			`"TM": {`
			`"RC": "C",`
			`"E": "U",`
			`"RL": "O"`
			`},`
			`"BM": {`
			`"UI": "N",`
			`"SCORE": "4.300",`
			`"AV": "N",`
			`"PR": "L",`
			`"S": "U",`
			`"I": "N",`
			`"C": "L",`
			`"AC": "L",`
			`"A": "N"`
			`}`
			`}`
			`},`
			`"problemtype": {`
			`"problemtype_data": [`
			`{`
			`"description": [`
			`{`
			`"value": "Obtain Information",`
			`"lang": "eng"`
			`}`
			`]`
			`}`
			`]`
			`}`
			`}`