Ibm

Rational Rhapsody Design Manager

90 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.4

CVE-2016-9696

  • EPSS 0.15%
  • Published 20.03.2017 16:59:01
  • Last modified 20.04.2025 01:37:25

IBM Rhapsody DM 4.0, 5.0, and 6.0 is vulnerable to HTML injection. A remote attacker could inject malicious HTML code, which when viewed, would be executed in the victim's Web browser within the security context of the hosting site. IBM Reference #: ...

5.4

CVE-2016-9694

  • EPSS 0.23%
  • Published 20.03.2017 16:59:01
  • Last modified 20.04.2025 01:37:25

IBM Rhapsody DM 4.0, 5.0, and 6.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a ...

4.3

CVE-2016-8973

  • EPSS 0.19%
  • Published 20.03.2017 16:59:01
  • Last modified 20.04.2025 01:37:25

IBM Rhapsody DM 4.0, 5.0 and 6.0 contains an undisclosed vulnerability that may allow an authenticated user to upload infected malicious files to the server. IBM Reference #: 1999960.

8.1

CVE-2016-8974

  • EPSS 0.38%
  • Published 23.02.2017 16:59:00
  • Last modified 20.04.2025 01:37:25

IBM Rhapsody DM 4.0, 5.0 and 6.0 is vulnerable to a denial of service, caused by an XML External Entity Injection (XXE) error when processing XML data. A remote attacker could exploit this vulnerability to expose highly sensitive information or consu...

4.3

CVE-2016-2987

  • EPSS 0.18%
  • Published 01.02.2017 20:59:00
  • Last modified 20.04.2025 01:37:25

An undisclosed vulnerability in CLM applications may result in some administrative deployment parameters being shown to an attacker.

5.4

CVE-2016-3014

  • EPSS 0.68%
  • Published 30.11.2016 11:59:23
  • Last modified 12.04.2025 10:46:40

Cross-site scripting (XSS) vulnerability in IBM Rational Collaborative Lifecycle Management 4.0 before 4.0.7 iFix11 and 5.0 before 5.0.2 iFix17, Rational Quality Manager 4.0 before 4.0.7 iFix11 and 5.0 before 5.0.2 iFix17, Rational Team Concert 4.0 b...

5.4

CVE-2016-2926

  • EPSS 0.54%
  • Published 25.11.2016 20:59:06
  • Last modified 12.04.2025 10:46:40

Cross-site scripting (XSS) vulnerability in IBM Rational Collaborative Lifecycle Management 4.0 before 4.0.7 iFix11, 5.0 before 5.0.2 iFix19, and 6.0 before 6.0.2 iFix3; Rational Quality Manager 4.0 before 4.0.7 iFix11, 5.0 before 5.0.2 iFix19, and 6...

5.4

CVE-2016-2986

  • EPSS 0.17%
  • Published 25.11.2016 03:59:04
  • Last modified 12.04.2025 10:46:40

Cross-site scripting (XSS) vulnerability in IBM Rational Collaborative Lifecycle Management 6.x before 6.0.1 iFix6, Rational Quality Manager 6.x before 6.0.1 iFix6, Rational Team Concert 6.x before 6.0.1 iFix6, Rational DOORS Next Generation 6.x befo...

4

CVE-2016-2947

  • EPSS 0.18%
  • Published 25.11.2016 03:59:00
  • Last modified 12.04.2025 10:46:40

IBM Rational Collaborative Lifecycle Management 4.0 before 4.0.7 iFix11, 5.0 before 5.0.2 iFix18, and 6.0 before 6.0.2 iFix5; Rational Quality Manager 4.0 before 4.0.7 iFix11, 5.0 before 5.0.2 iFix18, and 6.0 before 6.0.2 iFix5; Rational Team Concert...

5.4

CVE-2016-2864

  • EPSS 0.17%
  • Published 24.11.2016 19:59:11
  • Last modified 12.04.2025 10:46:40

Cross-site scripting (XSS) vulnerability in IBM Rational Collaborative Lifecycle Management 3.0.1.6 before iFix8, 4.0 before 4.0.7 iFix11, 5.0 before 5.0.2 iFix18, and 6.0 before 6.0.2 iFix5; Rational Quality Manager 3.0.1.6 before iFix8, 4.0 before ...