CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2016-0372

IBM Rational Collaborative Lifecycle Management 3.0.1.6 before iFix8, 4.0 before 4.0.7 iFix11, 5.0 before 5.0.2 iFix18, and 6.0 before 6.0.2 iFix5; Rational Quality Manager 3.0.1.6 before iFix8, 4.0 before 4.0.7 iFix11, 5.0 before 5.0.2 iFix18, and 6.0 before 6.0.2 iFix5; Rational Team Concert 3.0.1.6 before iFix8, 4.0 before 4.0.7 iFix11, 5.0 before 5.0.2 iFix18, and 6.0 before 6.0.2 iFix5; Rational DOORS Next Generation 4.0 before 4.0.7 iFix11, 5.0 before 5.0.2 iFix18, and 6.0 before 6.0.2 iFix5; Rational Engineering Lifecycle Manager 4.x before 4.0.7 iFix11, 5.0 before 5.0.2 iFix18, and 6.0 before 6.0.2 iFix5; Rational Rhapsody Design Manager 4.0 before 4.0.7 iFix11, 5.0 before 5.0.2 iFix18, and 6.0 before 6.0.2 iFix5; and Rational Software Architect Design Manager 4.0 before 4.0.7 iFix11, 5.0 before 5.0.2 iFix18, and 6.0 before 6.0.2 iFix5 do not set the secure flag for the session cookie in an https session, which makes it easier for remote attackers to capture this cookie by intercepting its transmission within an http session.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 49.5%

CVSS Severity

CVSS v3 Score 3.7

CVSS v2 Score 4.3

References

Products affected by CVE-2016-0372

Ibm » Rational Collaborative Lifecycle Management » Version: 3.0.1.6

cpe:2.3:a:ibm:rational_collaborative_lifecycle_management:3.0.1.6
Ibm » Rational Collaborative Lifecycle Management » Version: 4.0.0

cpe:2.3:a:ibm:rational_collaborative_lifecycle_management:4.0.0
Ibm » Rational Collaborative Lifecycle Management » Version: 4.0.1

cpe:2.3:a:ibm:rational_collaborative_lifecycle_management:4.0.1
Ibm » Rational Collaborative Lifecycle Management » Version: 4.0.2

cpe:2.3:a:ibm:rational_collaborative_lifecycle_management:4.0.2
Ibm » Rational Collaborative Lifecycle Management » Version: 4.0.3

cpe:2.3:a:ibm:rational_collaborative_lifecycle_management:4.0.3
Ibm » Rational Collaborative Lifecycle Management » Version: 4.0.4

cpe:2.3:a:ibm:rational_collaborative_lifecycle_management:4.0.4
Ibm » Rational Collaborative Lifecycle Management » Version: 4.0.5

cpe:2.3:a:ibm:rational_collaborative_lifecycle_management:4.0.5
Ibm » Rational Collaborative Lifecycle Management » Version: 4.0.6

cpe:2.3:a:ibm:rational_collaborative_lifecycle_management:4.0.6
Ibm » Rational Collaborative Lifecycle Management » Version: 4.0.7

cpe:2.3:a:ibm:rational_collaborative_lifecycle_management:4.0.7
Ibm » Rational Collaborative Lifecycle Management » Version: 5.0.0

cpe:2.3:a:ibm:rational_collaborative_lifecycle_management:5.0.0
Ibm » Rational Collaborative Lifecycle Management » Version: 5.0.1

cpe:2.3:a:ibm:rational_collaborative_lifecycle_management:5.0.1
Ibm » Rational Collaborative Lifecycle Management » Version: 5.0.2

cpe:2.3:a:ibm:rational_collaborative_lifecycle_management:5.0.2
Ibm » Rational Collaborative Lifecycle Management » Version: 6.0.0

cpe:2.3:a:ibm:rational_collaborative_lifecycle_management:6.0.0
Ibm » Rational Collaborative Lifecycle Management » Version: 6.0.1

cpe:2.3:a:ibm:rational_collaborative_lifecycle_management:6.0.1
Ibm » Rational Collaborative Lifecycle Management » Version: 6.0.2

cpe:2.3:a:ibm:rational_collaborative_lifecycle_management:6.0.2
Ibm » Rational Doors Next Generation » Version: 4.0.0

cpe:2.3:a:ibm:rational_doors_next_generation:4.0.0
Ibm » Rational Doors Next Generation » Version: 4.0.1

cpe:2.3:a:ibm:rational_doors_next_generation:4.0.1
Ibm » Rational Doors Next Generation » Version: 4.0.2

cpe:2.3:a:ibm:rational_doors_next_generation:4.0.2
Ibm » Rational Doors Next Generation » Version: 4.0.3

cpe:2.3:a:ibm:rational_doors_next_generation:4.0.3
Ibm » Rational Doors Next Generation » Version: 4.0.4

cpe:2.3:a:ibm:rational_doors_next_generation:4.0.4
Ibm » Rational Doors Next Generation » Version: 4.0.5

cpe:2.3:a:ibm:rational_doors_next_generation:4.0.5
Ibm » Rational Doors Next Generation » Version: 4.0.6

cpe:2.3:a:ibm:rational_doors_next_generation:4.0.6
Ibm » Rational Doors Next Generation » Version: 4.0.7

cpe:2.3:a:ibm:rational_doors_next_generation:4.0.7
Ibm » Rational Doors Next Generation » Version: 5.0.0

cpe:2.3:a:ibm:rational_doors_next_generation:5.0.0
Ibm » Rational Doors Next Generation » Version: 5.0.1

cpe:2.3:a:ibm:rational_doors_next_generation:5.0.1
Ibm » Rational Doors Next Generation » Version: 5.0.2

cpe:2.3:a:ibm:rational_doors_next_generation:5.0.2
Ibm » Rational Doors Next Generation » Version: 6.0.0

cpe:2.3:a:ibm:rational_doors_next_generation:6.0.0
Ibm » Rational Doors Next Generation » Version: 6.0.1

cpe:2.3:a:ibm:rational_doors_next_generation:6.0.1
Ibm » Rational Doors Next Generation » Version: 6.0.2

cpe:2.3:a:ibm:rational_doors_next_generation:6.0.2
Ibm » Rational Engineering Lifecycle Manager » Version: 4.0.0

cpe:2.3:a:ibm:rational_engineering_lifecycle_manager:4.0.0
Ibm » Rational Engineering Lifecycle Manager » Version: 4.0.1

cpe:2.3:a:ibm:rational_engineering_lifecycle_manager:4.0.1
Ibm » Rational Engineering Lifecycle Manager » Version: 4.0.2

cpe:2.3:a:ibm:rational_engineering_lifecycle_manager:4.0.2
Ibm » Rational Engineering Lifecycle Manager » Version: 4.0.3

cpe:2.3:a:ibm:rational_engineering_lifecycle_manager:4.0.3
Ibm » Rational Engineering Lifecycle Manager » Version: 4.0.4

cpe:2.3:a:ibm:rational_engineering_lifecycle_manager:4.0.4
Ibm » Rational Engineering Lifecycle Manager » Version: 4.0.5

cpe:2.3:a:ibm:rational_engineering_lifecycle_manager:4.0.5
Ibm » Rational Engineering Lifecycle Manager » Version: 4.0.6

cpe:2.3:a:ibm:rational_engineering_lifecycle_manager:4.0.6
Ibm » Rational Engineering Lifecycle Manager » Version: 4.0.7

cpe:2.3:a:ibm:rational_engineering_lifecycle_manager:4.0.7
Ibm » Rational Engineering Lifecycle Manager » Version: 5.0.0

cpe:2.3:a:ibm:rational_engineering_lifecycle_manager:5.0.0
Ibm » Rational Engineering Lifecycle Manager » Version: 5.0.1

cpe:2.3:a:ibm:rational_engineering_lifecycle_manager:5.0.1
Ibm » Rational Engineering Lifecycle Manager » Version: 5.0.2

cpe:2.3:a:ibm:rational_engineering_lifecycle_manager:5.0.2
Ibm » Rational Engineering Lifecycle Manager » Version: 6.0.0

cpe:2.3:a:ibm:rational_engineering_lifecycle_manager:6.0.0
Ibm » Rational Engineering Lifecycle Manager » Version: 6.0.1

cpe:2.3:a:ibm:rational_engineering_lifecycle_manager:6.0.1
Ibm » Rational Engineering Lifecycle Manager » Version: 6.0.2

cpe:2.3:a:ibm:rational_engineering_lifecycle_manager:6.0.2
Ibm » Rational Quality Manager » Version: 3.0.1.6

cpe:2.3:a:ibm:rational_quality_manager:3.0.1.6
Ibm » Rational Quality Manager » Version: 4.0.0

cpe:2.3:a:ibm:rational_quality_manager:4.0.0
Ibm » Rational Quality Manager » Version: 4.0.1

cpe:2.3:a:ibm:rational_quality_manager:4.0.1
Ibm » Rational Quality Manager » Version: 4.0.2

cpe:2.3:a:ibm:rational_quality_manager:4.0.2
Ibm » Rational Quality Manager » Version: 4.0.3

cpe:2.3:a:ibm:rational_quality_manager:4.0.3
Ibm » Rational Quality Manager » Version: 4.0.4

cpe:2.3:a:ibm:rational_quality_manager:4.0.4
Ibm » Rational Quality Manager » Version: 4.0.5

cpe:2.3:a:ibm:rational_quality_manager:4.0.5
Ibm » Rational Quality Manager » Version: 4.0.6

cpe:2.3:a:ibm:rational_quality_manager:4.0.6
Ibm » Rational Quality Manager » Version: 4.0.7

cpe:2.3:a:ibm:rational_quality_manager:4.0.7
Ibm » Rational Quality Manager » Version: 5.0.0

cpe:2.3:a:ibm:rational_quality_manager:5.0.0
Ibm » Rational Quality Manager » Version: 5.0.1

cpe:2.3:a:ibm:rational_quality_manager:5.0.1
Ibm » Rational Quality Manager » Version: 5.0.2

cpe:2.3:a:ibm:rational_quality_manager:5.0.2
Ibm » Rational Quality Manager » Version: 6.0.0

cpe:2.3:a:ibm:rational_quality_manager:6.0.0
Ibm » Rational Quality Manager » Version: 6.0.1

cpe:2.3:a:ibm:rational_quality_manager:6.0.1
Ibm » Rational Quality Manager » Version: 6.0.2

cpe:2.3:a:ibm:rational_quality_manager:6.0.2
Ibm » Rational Rhapsody Design Manager » Version: 4.0

cpe:2.3:a:ibm:rational_rhapsody_design_manager:4.0
Ibm » Rational Rhapsody Design Manager » Version: 4.0.1

cpe:2.3:a:ibm:rational_rhapsody_design_manager:4.0.1
Ibm » Rational Rhapsody Design Manager » Version: 4.0.2

cpe:2.3:a:ibm:rational_rhapsody_design_manager:4.0.2
Ibm » Rational Rhapsody Design Manager » Version: 4.0.3

cpe:2.3:a:ibm:rational_rhapsody_design_manager:4.0.3
Ibm » Rational Rhapsody Design Manager » Version: 4.0.4

cpe:2.3:a:ibm:rational_rhapsody_design_manager:4.0.4
Ibm » Rational Rhapsody Design Manager » Version: 4.0.5

cpe:2.3:a:ibm:rational_rhapsody_design_manager:4.0.5
Ibm » Rational Rhapsody Design Manager » Version: 4.0.6

cpe:2.3:a:ibm:rational_rhapsody_design_manager:4.0.6
Ibm » Rational Rhapsody Design Manager » Version: 4.0.7

cpe:2.3:a:ibm:rational_rhapsody_design_manager:4.0.7
Ibm » Rational Rhapsody Design Manager » Version: 5.0.0

cpe:2.3:a:ibm:rational_rhapsody_design_manager:5.0.0
Ibm » Rational Rhapsody Design Manager » Version: 5.0.1

cpe:2.3:a:ibm:rational_rhapsody_design_manager:5.0.1
Ibm » Rational Rhapsody Design Manager » Version: 5.0.2

cpe:2.3:a:ibm:rational_rhapsody_design_manager:5.0.2
Ibm » Rational Rhapsody Design Manager » Version: 6.0.0

cpe:2.3:a:ibm:rational_rhapsody_design_manager:6.0.0
Ibm » Rational Rhapsody Design Manager » Version: 6.0.1

cpe:2.3:a:ibm:rational_rhapsody_design_manager:6.0.1
Ibm » Rational Rhapsody Design Manager » Version: 6.0.2

cpe:2.3:a:ibm:rational_rhapsody_design_manager:6.0.2
Ibm » Rational Software Architect Design Manager » Version: 4.0.0

cpe:2.3:a:ibm:rational_software_architect_design_manager:4.0.0
Ibm » Rational Software Architect Design Manager » Version: 4.0.1

cpe:2.3:a:ibm:rational_software_architect_design_manager:4.0.1
Ibm » Rational Software Architect Design Manager » Version: 4.0.2

cpe:2.3:a:ibm:rational_software_architect_design_manager:4.0.2
Ibm » Rational Software Architect Design Manager » Version: 4.0.3

cpe:2.3:a:ibm:rational_software_architect_design_manager:4.0.3
Ibm » Rational Software Architect Design Manager » Version: 4.0.4

cpe:2.3:a:ibm:rational_software_architect_design_manager:4.0.4
Ibm » Rational Software Architect Design Manager » Version: 4.0.5

cpe:2.3:a:ibm:rational_software_architect_design_manager:4.0.5
Ibm » Rational Software Architect Design Manager » Version: 4.0.6

cpe:2.3:a:ibm:rational_software_architect_design_manager:4.0.6
Ibm » Rational Software Architect Design Manager » Version: 4.0.7

cpe:2.3:a:ibm:rational_software_architect_design_manager:4.0.7
Ibm » Rational Software Architect Design Manager » Version: 5.0.0

cpe:2.3:a:ibm:rational_software_architect_design_manager:5.0.0
Ibm » Rational Software Architect Design Manager » Version: 5.0.1

cpe:2.3:a:ibm:rational_software_architect_design_manager:5.0.1
Ibm » Rational Software Architect Design Manager » Version: 5.0.2

cpe:2.3:a:ibm:rational_software_architect_design_manager:5.0.2
Ibm » Rational Software Architect Design Manager » Version: 6.0.0

cpe:2.3:a:ibm:rational_software_architect_design_manager:6.0.0
Ibm » Rational Software Architect Design Manager » Version: 6.0.1

cpe:2.3:a:ibm:rational_software_architect_design_manager:6.0.1
Ibm » Rational Software Architect Design Manager » Version: 6.0.2

cpe:2.3:a:ibm:rational_software_architect_design_manager:6.0.2
Ibm » Rational Team Concert » Version: 3.0.1.6

cpe:2.3:a:ibm:rational_team_concert:3.0.1.6
Ibm » Rational Team Concert » Version: 4.0.0

cpe:2.3:a:ibm:rational_team_concert:4.0.0
Ibm » Rational Team Concert » Version: 4.0.1

cpe:2.3:a:ibm:rational_team_concert:4.0.1
Ibm » Rational Team Concert » Version: 4.0.2

cpe:2.3:a:ibm:rational_team_concert:4.0.2
Ibm » Rational Team Concert » Version: 4.0.3

cpe:2.3:a:ibm:rational_team_concert:4.0.3
Ibm » Rational Team Concert » Version: 4.0.4

cpe:2.3:a:ibm:rational_team_concert:4.0.4
Ibm » Rational Team Concert » Version: 4.0.5

cpe:2.3:a:ibm:rational_team_concert:4.0.5
Ibm » Rational Team Concert » Version: 4.0.6

cpe:2.3:a:ibm:rational_team_concert:4.0.6
Ibm » Rational Team Concert » Version: 4.0.7

cpe:2.3:a:ibm:rational_team_concert:4.0.7
Ibm » Rational Team Concert » Version: 5.0.0

cpe:2.3:a:ibm:rational_team_concert:5.0.0
Ibm » Rational Team Concert » Version: 5.0.1

cpe:2.3:a:ibm:rational_team_concert:5.0.1
Ibm » Rational Team Concert » Version: 5.0.2

cpe:2.3:a:ibm:rational_team_concert:5.0.2
Ibm » Rational Team Concert » Version: 6.0.0

cpe:2.3:a:ibm:rational_team_concert:6.0.0
Ibm » Rational Team Concert » Version: 6.0.1

cpe:2.3:a:ibm:rational_team_concert:6.0.1
Ibm » Rational Team Concert » Version: 6.0.2

cpe:2.3:a:ibm:rational_team_concert:6.0.2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2016-0372

Products

Pricing

Contact Us