{ "affects": { "vendor": { "vendor_data": [ { "product": { "product_data": [ { "version": { "version_data": [ { "version_value": "6.0" }, { "version_value": "6.0.1" }, { "version_value": "6.0.2" }, { "version_value": "6.0.3" }, { "version_value": "6.0.4" }, { "version_value": "6.0.5" }, { "version_value": "6.0.6" }, { "version_value": "6.0.6.1" } ] }, "product_name": "Rational Rhapsody Design Manager" } ] }, "vendor_name": "IBM" } ] } }, "references": { "reference_data": [ { "name": "https://www.ibm.com/support/pages/node/2867997", "url": "https://www.ibm.com/support/pages/node/2867997", "refsource": "CONFIRM", "title": "IBM Security Bulletin 2867997 (Rational Rhapsody Design Manager)" }, { "refsource": "XF", "title": "X-Force Vulnerability Report", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/163654", "name": "ibm-jazz-cve20194457-info-disc (163654)" } ] }, "impact": { "cvssv3": { "TM": { "E": "U", "RC": "C", "RL": "O" }, "BM": { "A": "N", "PR": "L", "AC": "L", "C": "L", "S": "U", "UI": "N", "AV": "N", "SCORE": "4.300", "I": "N" } } }, "CVE_data_meta": { "ID": "CVE-2019-4457", "DATE_PUBLIC": "2020-02-18T00:00:00", "ASSIGNER": "psirt@us.ibm.com", "STATE": "PUBLIC" }, "data_type": "CVE", "description": { "description_data": [ { "lang": "eng", "value": "IBM Jazz Foundation 6.0, 6.0.1, 6.0.2, 6.0.3, 6.0.4, 6.0.5, 6.0.6, and 6.0.6.1 could allow an authenticated user to obtain sensitive information that could be used in further attacks against the system. IBM X-Force ID: 163654." } ] }, "data_version": "4.0", "problemtype": { "problemtype_data": [ { "description": [ { "value": "Obtain Information", "lang": "eng" } ] } ] }, "data_format": "MITRE" }