CVE-2015-5045

LOW

IBM Rational License Key Server - Exposure of Sensitive Information via Administration and Reporting Tool

Title source: llm
STIX 2.1

Description

The Administration and Reporting tool in IBM Rational License Key Server (RLKS) before 8.1.4.9 iFix 04 allows local users to obtain sensitive information via unspecified vectors. IBM X-Force ID: 106938.

References (2)

Core 2
Core References
Vendor Advisory x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?uid=swg21982895
VDB Entry, Vendor Advisory vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/106938

Scores

CVSS v3 3.3
EPSS 0.0033
EPSS Percentile 24.7%
Attack Vector LOCAL
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Details

CWE
CWE-200
Status published
Products (9)
ibm/rational_license_key_server 8.1.4
ibm/rational_license_key_server 8.1.4.2
ibm/rational_license_key_server 8.1.4.3
ibm/rational_license_key_server 8.1.4.4
ibm/rational_license_key_server 8.1.4.5
ibm/rational_license_key_server 8.1.4.6
ibm/rational_license_key_server 8.1.4.7
ibm/rational_license_key_server 8.1.4.8
ibm/rational_license_key_server 8.1.4.9
Published Mar 26, 2018
Tracked Since Feb 18, 2026