Weak Encryption Algorithm in IBM Team Concert (RTC) 5.0-6.0.5 Allows Unauthorized Access to Sensitive Information

Weak Encryption Algorithm in IBM Team Concert (RTC) 5.0-6.0.5 Allows Unauthorized Access to Sensitive Information

CVE-2017-1701 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:N/A:N

IBM Team Concert (RTC) 5.0, 5.0.1, 5.0.2, 6.0, 6.0.1, 6.0.2, 6.0.3, 6.0.4, and 6.0.5 stores credentials for users using a weak encryption algorithm, which could allow an authenticated user to obtain highly sensitive information. IBM X-Force ID: 134393.

Learn more about our User Device Pen Test.