Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The account-creation functionality in IBM Rational Focal Point 6.4.x and 6.5.x before 6.5.2.3 and 6.6.x before 6.6.1 places the new user's default password within the creation page, which allows remote attackers to obtain sensitive information by reading the HTML source code.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
IBM Rational Focal Point 安全漏洞
Vulnerability Description
IBM Rational Focal Point是美国IBM公司的一套产品和投资组合管理软件。该软件主要用于项目管理、产品管理和产品投资组合管理,并提供优先级划分、路线图等功能用以评估投资决策的效果。 IBM Rational Focal Point的账户创建功能存在安全漏洞,该漏洞源于创建页面存放了新用户的默认密码。远程攻击者可通过读取HTML源代码利用该漏洞获取敏感信息。以下版本受到影响:IBM Rational Focal Point 6.4.x版本,6.5.2.3之前的6.5.x版本,6.6.1之
CVSS Information
N/A
Vulnerability Type
N/A