User Impersonation Vulnerability in IBM Quality Manager (RQM) 6.02, 6.06, and 6.0.6.1

User Impersonation Vulnerability in IBM Quality Manager (RQM) 6.02, 6.06, and 6.0.6.1

CVE-2019-4603 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N

IBM Quality Manager (RQM) 6.02, 6.06, and 6.0.6.1 could allow an authenticated user to create keywords through the REST API and have them appear as if they were created by another user. IBM X-Force ID: 168295.

Learn more about our Api Penetration Testing.