VYPR

Rational License Key Server

by IBM

CVEs (6)

  • CVE-2015-5045LowMar 26, 2018
    risk 0.21cvss 3.3epss 0.00

    The Administration and Reporting tool in IBM Rational License Key Server (RLKS) before 8.1.4.9 iFix 04 allows local users to obtain sensitive information via unspecified vectors. IBM X-Force ID: 106938.

  • CVE-2011-1389Jan 19, 2012
    risk 0.01cvss epss 0.07

    Multiple directory traversal vulnerabilities in the vendor daemon in Rational Common Licensing in Telelogic License Server 2.0, Rational License Server 7.x, and ibmratl in IBM Rational License Key Server (RLKS) 8.0 through 8.1.2 allow remote attackers to execute arbitrary code…

  • CVE-2015-1907May 8, 2015
    risk 0.00cvss epss 0.02

    The Administration and Reporting Tool in IBM Rational License Key Server (RLKS) 8.1.4 before 8.1.4.7 allows remote authenticated users to read cookies via unspecified vectors.

  • CVE-2014-4756Sep 10, 2014
    risk 0.00cvss epss 0.01

    The Administration and Reporting Tool in IBM Rational License Key Server (RLKS) 8.1.4.x before 8.1.4.4 allows remote authenticated users to hijack sessions via unspecified vectors.

  • CVE-2014-3079Sep 10, 2014
    risk 0.00cvss epss 0.02

    The Administration and Reporting Tool in IBM Rational License Key Server (RLKS) 8.1.4.x before 8.1.4.4 allows remote authenticated users to bypass authorization checks and visit unspecified URLs with license-usage data via a DESCRIBE clause in a SPARQL query.

  • CVE-2014-0909Sep 10, 2014
    risk 0.00cvss epss 0.02

    The Administration and Reporting Tool in IBM Rational License Key Server (RLKS) 8.1.4.x before 8.1.4.4 does not set the secure flag for the session cookie in an https session, which makes it easier for remote attackers to capture this cookie by intercepting its transmission…