CVE-2015-7471
- EPSS 0.13%
- Published 15.03.2018 22:29:00
- Last modified 21.11.2024 02:36:51
Cross-site scripting (XSS) vulnerability in IBM Rational Collaborative Lifecycle Management (CLM) 3.0.1 before 3.0.1.6 iFix7 Interim Fix 1, 4.0.x before 4.0.7 iFix10, 5.0.x before 5.0.2 iFix15, and 6.0.x before 6.0.1 iFix4; Rational Quality Manager (...
CVE-2015-7453
- EPSS 0.19%
- Published 15.03.2018 22:29:00
- Last modified 21.11.2024 02:36:49
Cross-site scripting (XSS) vulnerability in IBM Rational Collaborative Lifecycle Management (CLM) 3.0.1 before 3.0.1.6 iFix7 Interim Fix 1, 4.0.x before 4.0.7 iFix10, 5.0.x before 5.0.2 iFix15, and 6.0.x before 6.0.1 iFix4; Rational Quality Manager (...
CVE-2015-7440
- EPSS 0.05%
- Published 15.03.2018 22:29:00
- Last modified 21.11.2024 02:36:47
IBM Rational Collaborative Lifecycle Management (CLM) 3.0.1 before 3.0.1.6 iFix7 Interim Fix 1, 4.0.x before 4.0.7 iFix10, 5.0.x before 5.0.2 iFix15, and 6.0.x before 6.0.1 iFix4; Rational Quality Manager (RQM) 3.0.x before 3.0.1.6 iFix7 Interim Fix ...
CVE-2017-1462
- EPSS 0.38%
- Published 21.02.2018 21:29:00
- Last modified 21.11.2024 03:21:54
IBM Rhapsody DM 5.0 and 6.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a truste...
CVE-2017-1653
- EPSS 0.57%
- Published 26.01.2018 21:29:00
- Last modified 21.11.2024 03:22:10
IBM Jazz Foundation (IBM Rational Collaborative Lifecycle Management 6.0.x) is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially l...
CVE-2016-0219
- EPSS 0.4%
- Published 16.01.2018 19:29:00
- Last modified 21.11.2024 02:41:17
XML external entity (XXE) vulnerability in IBM Rational Team Concert 3.0 before 3.0.1.6 iFix7 Interim Fix 1, 4.0 before 4.0.7 iFix10, 5.0 before 5.0.2 iFix15, and 6.0 before 6.0.1 iFix4 allows remote authenticated users to cause a denial of service v...
CVE-2017-1365
- EPSS 0.2%
- Published 27.12.2017 16:29:14
- Last modified 20.04.2025 01:37:25
IBM Team Concert (RTC including IBM Rational Collaborative Lifecycle Management 4.0, 5.0., and 6.0) is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended fun...
CVE-2017-1191
- EPSS 0.13%
- Published 27.12.2017 16:29:13
- Last modified 20.04.2025 01:37:25
An undisclosed vulnerability in CLM applications (including IBM Rational Collaborative Lifecycle Management 4.0, 5.0, and 6.0) with potential for failure to restrict URL Access. IBM X-Force ID: 123661.
CVE-2017-1507
- EPSS 0.13%
- Published 11.12.2017 21:29:00
- Last modified 20.04.2025 01:37:25
IBM Jazz Foundation Products could disclose sensitive information during a scan that could lead to further attacks against the system. IBM X-Force ID: 129619.
CVE-2017-1570
- EPSS 0.18%
- Published 27.11.2017 21:29:00
- Last modified 20.04.2025 01:37:25
IBM Jazz Foundation products could allow an authenticated user to obtain sensitive information from stack traces. IBM X-Force ID: 131852.