Unrated severityNVD Advisory· Published Sep 10, 2014· Updated May 6, 2026

CVE-2014-3079

Description

The Administration and Reporting Tool in IBM Rational License Key Server (RLKS) 8.1.4.x before 8.1.4.4 allows remote authenticated users to bypass authorization checks and visit unspecified URLs with license-usage data via a DESCRIBE clause in a SPARQL query.

Affected products

IBM/Rational License Key Server3 versions
cpe:2.3:a:ibm:rational_license_key_server:8.1.4:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:a:ibm:rational_license_key_server:8.1.4:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:rational_license_key_server:8.1.4.2:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:rational_license_key_server:8.1.4.3:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www-01.ibm.com/support/docview.wssnvdPatchVendor Advisory
secunia.com/advisories/60709nvd
secunia.com/advisories/61071nvd
www-01.ibm.com/support/docview.wssnvd
www-01.ibm.com/support/docview.wssnvd
www.securityfocus.com/bid/69643nvd
exchange.xforce.ibmcloud.com/vulnerabilities/93912nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000