{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-05-10T18:49:48.871","vulnerabilities":[{"cve":{"id":"CVE-2014-3037","sourceIdentifier":"psirt@us.ibm.com","published":"2014-09-10T10:55:07.113","lastModified":"2026-05-06T22:30:45.220","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Cross-site request forgery (CSRF) vulnerability in IBM Configuration Management Application (aka VVC) in IBM Rational Engineering Lifecycle Manager before 4.0.7 and 5.x before 5.0.1, Rational Software Architect Design Manager before 4.0.7 and 5.x before 5.0.1, and Rational Rhapsody Design Manager before 4.0.7 and 5.x before 5.0.1 allows remote authenticated users to hijack the authentication of arbitrary users for requests that insert XSS sequences."},{"lang":"es","value":"Vulnerabilidad de CSRF en IBM Configuration Management Application (tambiĆ©n conocido como VVC) en IBM Rational Engineering Lifecycle Manager anterior a 4.0.7 y 5.x anterior a 5.0.1, Rational Software Architect Design Manager anterior a 4.0.7 y 5.x anterior a 5.0.1, y Rational Rhapsody Design Manager anterior a 4.0.7 y 5.x anterior a 5.0.1 permite a usuarios remotos autenticados secuestrar la autenticaciĆ³n de usuarios arbitrarios para solicitudes que insertan secuencias de XSS."}],"metrics":{"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:M/Au:S/C:P/I:P/A:P","baseScore":6.0,"accessVector":"NETWORK","accessComplexity":"MEDIUM","authentication":"SINGLE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL"},"baseSeverity":"MEDIUM","exploitabilityScore":6.8,"impactScore":6.4,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":true}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-352"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:rational_rhapsody_design_manager:*:*:*:*:*:*:*:*","versionEndIncluding":"4.0.6","matchCriteriaId":"7FDAA7F3-B666-485D-B35A-6C095A729D2E"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:rational_rhapsody_design_manager:3.0:*:*:*:*:*:*:*","matchCriteriaId":"AF445BA2-BD53-43FB-BF1E-58510FC4FF3B"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:rational_rhapsody_design_manager:3.0.0.1:*:*:*:*:*:*:*","matchCriteriaId":"CA18DE5C-904D-4FD0-A479-18314B170ACB"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:rational_rhapsody_design_manager:3.0.1:*:*:*:*:*:*:*","matchCriteriaId":"890ABCC2-F417-4E6E-A0A8-7D485FAE3FA1"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:rational_rhapsody_design_manager:4.0:*:*:*:*:*:*:*","matchCriteriaId":"46883130-F370-406C-A8E8-213399F2EE47"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:rational_rhapsody_design_manager:4.0.1:*:*:*:*:*:*:*","matchCriteriaId":"5A13CE71-BEC0-4DEC-9CF7-183672F6729D"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:rational_rhapsody_design_manager:4.0.2:*:*:*:*:*:*:*","matchCriteriaId":"2DB2451D-F31E-4CF6-8E61-2970A4FB174D"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:rational_rhapsody_design_manager:4.0.3:*:*:*:*:*:*:*","matchCriteriaId":"01A27F4B-0ED9-479F-B91B-FCB514CF1D1B"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:rational_rhapsody_design_manager:4.0.4:*:*:*:*:*:*:*","matchCriteriaId":"EEAF452F-94AB-4857-BCD6-AE5251C61526"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:rational_rhapsody_design_manager:4.0.5:*:*:*:*:*:*:*","matchCriteriaId":"7596E71E-4507-4EFC-ABF9-41D8FD338CC3"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:rational_rhapsody_design_manager:5.0:*:*:*:*:*:*:*","matchCriteriaId":"B12D7433-30F0-427F-BF82-0AAD492CE35D"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:rational_engineering_lifecycle_manager:*:*:*:*:*:*:*:*","versionEndIncluding":"4.06","matchCriteriaId":"EFE97777-956C-4D24-866B-520A4315EFBB"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:rational_engineering_lifecycle_manager:1.0:*:*:*:*:*:*:*","matchCriteriaId":"5B30003D-1BF8-414D-9D6D-9D1B90D4EBB3"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:rational_engineering_lifecycle_manager:1.0.0.1:*:*:*:*:*:*:*","matchCriteriaId":"A6B5AC6B-5DCB-458C-8267-6AF5CC9C3E44"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:rational_engineering_lifecycle_manager:4.03:*:*:*:*:*:*:*","matchCriteriaId":"B6ECCE2F-893B-496A-AFBE-179A8CC29651"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:rational_engineering_lifecycle_manager:4.04:*:*:*:*:*:*:*","matchCriteriaId":"73B56BB0-7779-4FF5-82A9-A81F9813FD00"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:rational_engineering_lifecycle_manager:4.05:*:*:*:*:*:*:*","matchCriteriaId":"618EDC12-6763-4AD4-9498-5AF28C8DE0D0"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:rational_engineering_lifecycle_manager:5.0:*:*:*:*:*:*:*","matchCriteriaId":"AE1738F8-EECC-46C9-AE0C-46E8E4B2AC5E"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:rational_software_architect_design_manager:*:*:*:*:*:*:*:*","versionEndIncluding":"4.0.6","matchCriteriaId":"A67F9944-5387-45AF-9FC6-6D04D1CAC5CF"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:rational_software_architect_design_manager:3.0:*:*:*:*:*:*:*","matchCriteriaId":"6D5C2251-FB5D-4775-BDB8-6115732E6615"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:rational_software_architect_design_manager:3.0.0.1:*:*:*:*:*:*:*","matchCriteriaId":"EB05DAD7-F6DB-4441-B9D4-BD0F1BD1DF25"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:rational_software_architect_design_manager:4.0.0:*:*:*:*:*:*:*","matchCriteriaId":"3FC3B8F6-F9D7-454C-B7A2-732B6708AF04"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:rational_software_architect_design_manager:4.0.1:*:*:*:*:*:*:*","matchCriteriaId":"B6B4FF44-507B-4F2E-9C7C-4D8A046542D1"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:rational_software_architect_design_manager:4.0.2:*:*:*:*:*:*:*","matchCriteriaId":"BF1DD60E-3E2C-4F42-9892-B031CB3B570D"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:rational_software_architect_design_manager:4.0.3:*:*:*:*:*:*:*","matchCriteriaId":"6504477B-9BF5-49F6-8E3A-9B07B30895B8"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:rational_software_architect_design_manager:4.0.4:*:*:*:*:*:*:*","matchCriteriaId":"C0C4948B-69C4-4CAF-808E-426483ED0622"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:rational_software_architect_design_manager:4.0.5:*:*:*:*:*:*:*","matchCriteriaId":"1C297440-406F-4508-9D8D-92F79DF91C4A"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:rational_software_architect_design_manager:5.0:*:*:*:*:*:*:*","matchCriteriaId":"E2654BDE-3134-4653-B472-995B02E9B841"}]}]}],"references":[{"url":"http://secunia.com/advisories/60649","source":"psirt@us.ibm.com"},{"url":"http://secunia.com/advisories/61071","source":"psirt@us.ibm.com"},{"url":"http://www-01.ibm.com/support/docview.wss?uid=swg21682120","source":"psirt@us.ibm.com","tags":["Patch","Vendor Advisory"]},{"url":"http://www.securityfocus.com/bid/69658","source":"psirt@us.ibm.com"},{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/93303","source":"psirt@us.ibm.com"},{"url":"http://secunia.com/advisories/60649","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://secunia.com/advisories/61071","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www-01.ibm.com/support/docview.wss?uid=swg21682120","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Vendor Advisory"]},{"url":"http://www.securityfocus.com/bid/69658","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/93303","source":"af854a3a-2127-422b-91ae-364da2661108"}]}}]}