Vulnerability Details CVE-2010-4094
The Tomcat server in IBM Rational Quality Manager and Rational Test Lab Manager has a default password for the ADMIN account, which makes it easier for remote attackers to execute arbitrary code by leveraging access to the manager role. NOTE: this might overlap CVE-2009-3548.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.842
EPSS Ranking 99.3%
CVSS Severity
CVSS v2 Score 5.0
References
- http://download4.boulder.ibm.com/sar/CMA/RAA/013m6/0/UpdateLog.txt
- http://osvdb.org/69008
- http://secunia.com/advisories/41784
- http://securitytracker.com/id?1024601
- http://www.securityfocus.com/bid/44172
- http://www.vupen.com/english/advisories/2010/2732
- http://www.zerodayinitiative.com/advisories/ZDI-10-214/
- http://download4.boulder.ibm.com/sar/CMA/RAA/013m6/0/UpdateLog.txt
- http://osvdb.org/69008
- http://secunia.com/advisories/41784
- http://securitytracker.com/id?1024601
- http://www.securityfocus.com/bid/44172
- http://www.vupen.com/english/advisories/2010/2732
- http://www.zerodayinitiative.com/advisories/ZDI-10-214/
Products affected by CVE-2010-4094
-
cpe:2.3:a:ibm:rational_quality_manager:2.0
-
cpe:2.3:a:ibm:rational_quality_manager:2.0.0.1
-
cpe:2.3:a:ibm:rational_quality_manager:2.0.0.2
-
cpe:2.3:a:ibm:rational_quality_manager:2.0.1
-
cpe:2.3:a:ibm:rational_quality_manager:2.0.1.1
-
cpe:2.3:a:ibm:rational_quality_manager:3.0
-
cpe:2.3:a:ibm:rational_quality_manager:3.0.1
-
cpe:2.3:a:ibm:rational_quality_manager:3.0.1.1
-
cpe:2.3:a:ibm:rational_quality_manager:3.0.1.2
-
cpe:2.3:a:ibm:rational_quality_manager:3.0.1.3
-
cpe:2.3:a:ibm:rational_quality_manager:3.0.1.4
-
cpe:2.3:a:ibm:rational_quality_manager:3.0.1.5
-
cpe:2.3:a:ibm:rational_quality_manager:3.0.1.6
-
cpe:2.3:a:ibm:rational_quality_manager:4.0
-
cpe:2.3:a:ibm:rational_quality_manager:4.0.0
-
cpe:2.3:a:ibm:rational_quality_manager:4.0.0.1
-
cpe:2.3:a:ibm:rational_quality_manager:4.0.0.2
-
cpe:2.3:a:ibm:rational_quality_manager:4.0.1
-
cpe:2.3:a:ibm:rational_quality_manager:4.0.2
-
cpe:2.3:a:ibm:rational_quality_manager:4.0.3
-
cpe:2.3:a:ibm:rational_quality_manager:4.0.4
-
cpe:2.3:a:ibm:rational_quality_manager:4.0.5
-
cpe:2.3:a:ibm:rational_quality_manager:4.0.6
-
cpe:2.3:a:ibm:rational_quality_manager:4.0.7
-
cpe:2.3:a:ibm:rational_quality_manager:5.0
-
cpe:2.3:a:ibm:rational_quality_manager:5.0.0
-
cpe:2.3:a:ibm:rational_quality_manager:5.0.1
-
cpe:2.3:a:ibm:rational_quality_manager:5.0.2
-
cpe:2.3:a:ibm:rational_quality_manager:6.0
-
cpe:2.3:a:ibm:rational_quality_manager:6.0.0
-
cpe:2.3:a:ibm:rational_quality_manager:6.0.1
-
cpe:2.3:a:ibm:rational_quality_manager:6.0.2
-
cpe:2.3:a:ibm:rational_quality_manager:6.0.3
-
cpe:2.3:a:ibm:rational_quality_manager:6.0.4
-
cpe:2.3:a:ibm:rational_quality_manager:6.0.5
-
cpe:2.3:a:ibm:rational_quality_manager:6.0.6
-
cpe:2.3:a:ibm:rational_quality_manager:6.0.6.1
-
cpe:2.3:a:ibm:rational_test_lab_manager:*