Ibm

Rational Team Concert

142 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5

CVE-2015-0113

  • EPSS 0.36%
  • Veröffentlicht 27.04.2015 11:59:03
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The Jazz help system in IBM Rational Collaborative Lifecycle Management 4.0 through 5.0.2, Rational Quality Manager 4.0 through 4.0.7 and 5.0 through 5.0.2, Rational Team Concert 4.0 through 4.0.7 and 5.0 through 5.0.2, Rational Requirements Composer...

4

CVE-2014-6131

  • EPSS 0.16%
  • Veröffentlicht 18.03.2015 10:59:01
  • Zuletzt bearbeitet 12.04.2025 10:46:40

IBM Rational Jazz Team Server (JTS), as used in Rational Collaborative Lifecycle Management 3.x and 4.x before 4.0.7 iFix4 and 5.x before 5.0.2 iFix2; Rational Quality Manager 2.x and 3.x before 3.0.1.6 iFix5, 4.x before 4.0.7 iFix4, and 5.x before 5...

5.5

CVE-2014-6129

  • EPSS 0.35%
  • Veröffentlicht 18.03.2015 10:59:00
  • Zuletzt bearbeitet 12.04.2025 10:46:40

IBM Rational Jazz Team Server (JTS), as used in Rational Collaborative Lifecycle Management 3.x and 4.x before 4.0.7 iFix4 and 5.x before 5.0.2 iFix2; Rational Quality Manager 2.x and 3.x before 3.0.1.6 iFix5, 4.x before 4.0.7 iFix4, and 5.x before 5...

3.5

CVE-2015-0123

  • EPSS 0.19%
  • Veröffentlicht 13.03.2015 01:59:23
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Cross-site scripting (XSS) vulnerability in IBM Rational Team Concert 2.x and 3.x before 3.0.1.6 iFix 5, 4.x before 4.0.7 iFix3, and 5.x before 5.0.2 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL, a differ...

3.5

CVE-2015-0122

  • EPSS 0.19%
  • Veröffentlicht 13.03.2015 01:59:22
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Cross-site scripting (XSS) vulnerability in IBM Rational Team Concert 2.x and 3.x before 3.0.1.6 iFix 5, 4.x before 4.0.7 iFix3, and 5.x before 5.0.2 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL, a differ...

5

CVE-2014-3092

  • EPSS 0.23%
  • Veröffentlicht 12.09.2014 01:55:06
  • Zuletzt bearbeitet 12.04.2025 10:46:40

IBM Jazz Team Server, as used in Rational Collaborative Lifecycle Management; Rational Quality Manager 3.x before 3.0.1.6 iFix 3, 4.x before 4.0.7, and 5.x before 5.0.1; and other Rational products, does not set the secure flag for the session cookie...

3.5

CVE-2014-3050

  • EPSS 0.16%
  • Veröffentlicht 29.07.2014 20:55:08
  • Zuletzt bearbeitet 12.04.2025 10:46:40

IBM Rational Team Concert (RTC) 3.x before 3.0.1.6 IF3 and 4.x before 4.0.7 does not properly integrate with build engines, which allows remote authenticated users to discover credentials via unspecified vectors.

3.5

CVE-2013-5404

  • EPSS 0.17%
  • Veröffentlicht 10.12.2013 19:55:07
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Cross-site scripting (XSS) vulnerability in the search implementation in IBM Rational Quality Manager (RQM) 2.0 through 2.0.1.1, 3.x before 3.0.1.6 iFix 1, and 4.x before 4.0.5, as used in Rational Team Concert, Rational Requirements Composer, and ot...

6.8

CVE-2012-0748

  • EPSS 0.13%
  • Veröffentlicht 01.10.2012 18:55:00
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Multiple cross-site request forgery (CSRF) vulnerabilities in unspecified services in IBM Rational Team Concert (RTC) 4.x before 4.0.0.1 allow remote attackers to hijack the authentication of arbitrary users for requests that modify work items.

4.3

CVE-2011-2607

  • EPSS 0.3%
  • Veröffentlicht 30.06.2011 16:55:06
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Cross-site scripting (XSS) vulnerability in IBM Rational Team Concert (RTC) 3.0 allows remote attackers to inject arbitrary web script or HTML via an unspecified parameter, aka Work Item 165513.