Ibm

Rational Team Concert

142 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5

CVE-2015-0113

  • EPSS 0.36%
  • Published 27.04.2015 11:59:03
  • Last modified 12.04.2025 10:46:40

The Jazz help system in IBM Rational Collaborative Lifecycle Management 4.0 through 5.0.2, Rational Quality Manager 4.0 through 4.0.7 and 5.0 through 5.0.2, Rational Team Concert 4.0 through 4.0.7 and 5.0 through 5.0.2, Rational Requirements Composer...

4

CVE-2014-6131

  • EPSS 0.16%
  • Published 18.03.2015 10:59:01
  • Last modified 12.04.2025 10:46:40

IBM Rational Jazz Team Server (JTS), as used in Rational Collaborative Lifecycle Management 3.x and 4.x before 4.0.7 iFix4 and 5.x before 5.0.2 iFix2; Rational Quality Manager 2.x and 3.x before 3.0.1.6 iFix5, 4.x before 4.0.7 iFix4, and 5.x before 5...

5.5

CVE-2014-6129

  • EPSS 0.35%
  • Published 18.03.2015 10:59:00
  • Last modified 12.04.2025 10:46:40

IBM Rational Jazz Team Server (JTS), as used in Rational Collaborative Lifecycle Management 3.x and 4.x before 4.0.7 iFix4 and 5.x before 5.0.2 iFix2; Rational Quality Manager 2.x and 3.x before 3.0.1.6 iFix5, 4.x before 4.0.7 iFix4, and 5.x before 5...

3.5

CVE-2015-0123

  • EPSS 0.19%
  • Published 13.03.2015 01:59:23
  • Last modified 12.04.2025 10:46:40

Cross-site scripting (XSS) vulnerability in IBM Rational Team Concert 2.x and 3.x before 3.0.1.6 iFix 5, 4.x before 4.0.7 iFix3, and 5.x before 5.0.2 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL, a differ...

3.5

CVE-2015-0122

  • EPSS 0.19%
  • Published 13.03.2015 01:59:22
  • Last modified 12.04.2025 10:46:40

Cross-site scripting (XSS) vulnerability in IBM Rational Team Concert 2.x and 3.x before 3.0.1.6 iFix 5, 4.x before 4.0.7 iFix3, and 5.x before 5.0.2 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL, a differ...

5

CVE-2014-3092

  • EPSS 0.23%
  • Published 12.09.2014 01:55:06
  • Last modified 12.04.2025 10:46:40

IBM Jazz Team Server, as used in Rational Collaborative Lifecycle Management; Rational Quality Manager 3.x before 3.0.1.6 iFix 3, 4.x before 4.0.7, and 5.x before 5.0.1; and other Rational products, does not set the secure flag for the session cookie...

3.5

CVE-2014-3050

  • EPSS 0.16%
  • Published 29.07.2014 20:55:08
  • Last modified 12.04.2025 10:46:40

IBM Rational Team Concert (RTC) 3.x before 3.0.1.6 IF3 and 4.x before 4.0.7 does not properly integrate with build engines, which allows remote authenticated users to discover credentials via unspecified vectors.

3.5

CVE-2013-5404

  • EPSS 0.17%
  • Published 10.12.2013 19:55:07
  • Last modified 11.04.2025 00:51:21

Cross-site scripting (XSS) vulnerability in the search implementation in IBM Rational Quality Manager (RQM) 2.0 through 2.0.1.1, 3.x before 3.0.1.6 iFix 1, and 4.x before 4.0.5, as used in Rational Team Concert, Rational Requirements Composer, and ot...

6.8

CVE-2012-0748

  • EPSS 0.13%
  • Published 01.10.2012 18:55:00
  • Last modified 11.04.2025 00:51:21

Multiple cross-site request forgery (CSRF) vulnerabilities in unspecified services in IBM Rational Team Concert (RTC) 4.x before 4.0.0.1 allow remote attackers to hijack the authentication of arbitrary users for requests that modify work items.

4.3

CVE-2011-2607

  • EPSS 0.3%
  • Published 30.06.2011 16:55:06
  • Last modified 11.04.2025 00:51:21

Cross-site scripting (XSS) vulnerability in IBM Rational Team Concert (RTC) 3.0 allows remote attackers to inject arbitrary web script or HTML via an unspecified parameter, aka Work Item 165513.