Ibm

Rational Collaborative Lifecycle Management

141 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.3

CVE-2017-1099

  • EPSS 35.51%
  • Published 13.06.2017 19:29:00
  • Last modified 20.04.2025 01:37:25

IBM Jazz Foundation could expose potentially sensitive information to authenticated users through stack trace error conditions. IBM X-Force ID: 120659.

4.3

CVE-2016-9735

  • EPSS 0.2%
  • Published 15.05.2017 21:29:00
  • Last modified 20.04.2025 01:37:25

IBM Jazz Foundation could allow an authenticated user to obtain sensitive information from stack traces. IBM X-Force ID: 119781,

8.1

CVE-2016-9707

  • EPSS 0.36%
  • Published 31.03.2017 18:59:00
  • Last modified 20.04.2025 01:37:25

IBM Jazz Foundation is vulnerable to a denial of service, caused by an XML External Entity Injection (XXE) error when processing XML data. A remote attacker could exploit this vulnerability to expose highly sensitive information or consume all availa...

6.8

CVE-2016-2981

  • EPSS 0.05%
  • Published 20.03.2017 16:59:01
  • Last modified 20.04.2025 01:37:25

An undisclosed vulnerability in the CLM applications in IBM Jazz Team Server may allow unauthorized access to user credentials. IBM Reference #: 1999965.

5.4

CVE-2016-8968

  • EPSS 0.66%
  • Published 15.02.2017 19:59:01
  • Last modified 20.04.2025 01:37:25

IBM Jazz Foundation is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted sessio...

4.3

CVE-2016-2866

  • EPSS 0.31%
  • Published 08.02.2017 19:59:00
  • Last modified 20.04.2025 01:37:25

An unspecified vulnerability in IBM Jazz Team Server may disclose some deployment information to an authenticated user.

5.4

CVE-2016-6032

  • EPSS 0.3%
  • Published 08.02.2017 19:59:00
  • Last modified 20.04.2025 01:37:25

IBM Rational Team Concert 4.0, 5.0 and 6.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure ...

5.4

CVE-2016-6061

  • EPSS 0.23%
  • Published 01.02.2017 20:59:02
  • Last modified 20.04.2025 01:37:25

IBM Jazz Foundation is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted sessio...

4.3

CVE-2016-6028

  • EPSS 0.18%
  • Published 01.02.2017 20:59:01
  • Last modified 20.04.2025 01:37:25

IBM Jazz technology based products might allow an attacker to view work item titles that they do not have privilege to view.

5.4

CVE-2016-6030

  • EPSS 0.23%
  • Published 01.02.2017 20:59:01
  • Last modified 20.04.2025 01:37:25

IBM Jazz Foundation is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted sessio...