Ibm

Rational Engineering Lifecycle Manager

141 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.4

CVE-2016-9973

  • EPSS 0.26%
  • Published 13.06.2017 19:29:00
  • Last modified 20.04.2025 01:37:25

IBM Jazz Foundation is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted sessio...

4.3

CVE-2017-1099

  • EPSS 35.51%
  • Published 13.06.2017 19:29:00
  • Last modified 20.04.2025 01:37:25

IBM Jazz Foundation could expose potentially sensitive information to authenticated users through stack trace error conditions. IBM X-Force ID: 120659.

4.3

CVE-2016-9735

  • EPSS 0.2%
  • Published 15.05.2017 21:29:00
  • Last modified 20.04.2025 01:37:25

IBM Jazz Foundation could allow an authenticated user to obtain sensitive information from stack traces. IBM X-Force ID: 119781,

8.1

CVE-2016-9707

  • EPSS 0.36%
  • Published 31.03.2017 18:59:00
  • Last modified 20.04.2025 01:37:25

IBM Jazz Foundation is vulnerable to a denial of service, caused by an XML External Entity Injection (XXE) error when processing XML data. A remote attacker could exploit this vulnerability to expose highly sensitive information or consume all availa...

4.3

CVE-2016-2987

  • EPSS 0.18%
  • Published 01.02.2017 20:59:00
  • Last modified 20.04.2025 01:37:25

An undisclosed vulnerability in CLM applications may result in some administrative deployment parameters being shown to an attacker.

5.4

CVE-2016-3014

  • EPSS 0.68%
  • Published 30.11.2016 11:59:23
  • Last modified 12.04.2025 10:46:40

Cross-site scripting (XSS) vulnerability in IBM Rational Collaborative Lifecycle Management 4.0 before 4.0.7 iFix11 and 5.0 before 5.0.2 iFix17, Rational Quality Manager 4.0 before 4.0.7 iFix11 and 5.0 before 5.0.2 iFix17, Rational Team Concert 4.0 b...

5.4

CVE-2016-2926

  • EPSS 0.54%
  • Published 25.11.2016 20:59:06
  • Last modified 12.04.2025 10:46:40

Cross-site scripting (XSS) vulnerability in IBM Rational Collaborative Lifecycle Management 4.0 before 4.0.7 iFix11, 5.0 before 5.0.2 iFix19, and 6.0 before 6.0.2 iFix3; Rational Quality Manager 4.0 before 4.0.7 iFix11, 5.0 before 5.0.2 iFix19, and 6...

5.4

CVE-2016-2986

  • EPSS 0.17%
  • Published 25.11.2016 03:59:04
  • Last modified 12.04.2025 10:46:40

Cross-site scripting (XSS) vulnerability in IBM Rational Collaborative Lifecycle Management 6.x before 6.0.1 iFix6, Rational Quality Manager 6.x before 6.0.1 iFix6, Rational Team Concert 6.x before 6.0.1 iFix6, Rational DOORS Next Generation 6.x befo...

4

CVE-2016-2947

  • EPSS 0.18%
  • Published 25.11.2016 03:59:00
  • Last modified 12.04.2025 10:46:40

IBM Rational Collaborative Lifecycle Management 4.0 before 4.0.7 iFix11, 5.0 before 5.0.2 iFix18, and 6.0 before 6.0.2 iFix5; Rational Quality Manager 4.0 before 4.0.7 iFix11, 5.0 before 5.0.2 iFix18, and 6.0 before 6.0.2 iFix5; Rational Team Concert...

5.4

CVE-2016-2864

  • EPSS 0.17%
  • Published 24.11.2016 19:59:11
  • Last modified 12.04.2025 10:46:40

Cross-site scripting (XSS) vulnerability in IBM Rational Collaborative Lifecycle Management 3.0.1.6 before iFix8, 4.0 before 4.0.7 iFix11, 5.0 before 5.0.2 iFix18, and 6.0 before 6.0.2 iFix5; Rational Quality Manager 3.0.1.6 before iFix8, 4.0 before ...