CVE-2017-1237

🗓️ 06 Jul 2018 14:00:00Reported by ibmType

IBM Jazz apps vulnerable to cross-site scripting, potential credentials disclosure

Reporter	Title	Published	Views	Family All 6
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities in IBM Jazz Team Server affect IBM Rational products based on IBM Jazz technology	28 Apr 202118:35	–	ibm
CNVD	Cross-site scripting vulnerability in multiple IBM products (CNVD-2018-19530)	10 Jul 201800:00	–	cnvd
Cvelist	CVE-2017-1237	6 Jul 201814:00	–	cvelist
EUVD	EUVD-2017-10253	7 Oct 202500:30	–	euvd
NVD	CVE-2017-1237	6 Jul 201814:29	–	nvd
Prion	Cross site scripting	6 Jul 201814:29	–	prion

NVD

Vulners

Node

ibm rational_collaborative_lifecycle_managementRange6.0.0–6.0.5

ibm rational_collaborative_lifecycle_managementMatch5.0.1

Node

ibm rational_team_concertRange6.0.0–6.0.5

ibm rational_team_concertMatch5.0.1

Node

ibm rational_doors_next_generationRange6.0.0–6.0.5

ibm rational_doors_next_generationMatch5.0.1

Node

ibm rational_quality_managerRange6.0.0–6.0.5

ibm rational_quality_managerMatch5.0.1

Node

ibm rational_rhapsody_design_managerRange6.0.0–6.0.5

ibm rational_rhapsody_design_managerMatch5.0.1

Node

ibm rational_software_architect_design_managerMatch5.0.1

ibm rational_software_architect_design_managerMatch6.0.0

ibm rational_software_architect_design_managerMatch6.0.1

Node

ibm rational_engineering_lifecycle_managerRange6.0.0–6.0.5

ibm rational_engineering_lifecycle_managerMatch5.0.1

[
  {
    "product": "Rational Collaborative Lifecycle Management",
    "vendor": "IBM",
    "versions": [
      {
        "status": "affected",
        "version": "6.0"
      },
      {
        "status": "affected",
        "version": "6.0.1"
      },
      {
        "status": "affected",
        "version": "6.0.2"
      },
      {
        "status": "affected",
        "version": "6.0.3"
      },
      {
        "status": "affected",
        "version": "6.0.4"
      },
      {
        "status": "affected",
        "version": "6.0.5"
      },
      {
        "status": "affected",
        "version": "5.0.x"
      }
    ]
  },
  {
    "product": "Rational DOORS Next Generation",
    "vendor": "IBM",
    "versions": [
      {
        "status": "affected",
        "version": "6.0"
      },
      {
        "status": "affected",
        "version": "6.0.1"
      },
      {
        "status": "affected",
        "version": "6.0.2"
      },
      {
        "status": "affected",
        "version": "6.0.3"
      },
      {
        "status": "affected",
        "version": "6.0.4"
      },
      {
        "status": "affected",
        "version": "6.0.5"
      },
      {
        "status": "affected",
        "version": "5.0.x"
      }
    ]
  },
  {
    "product": "Rational Engineering Lifecycle Manager",
    "vendor": "IBM",
    "versions": [
      {
        "status": "affected",
        "version": "6.0"
      },
      {
        "status": "affected",
        "version": "6.0.1"
      },
      {
        "status": "affected",
        "version": "6.0.2"
      },
      {
        "status": "affected",
        "version": "6.0.3"
      },
      {
        "status": "affected",
        "version": "6.0.4"
      },
      {
        "status": "affected",
        "version": "6.0.5"
      },
      {
        "status": "affected",
        "version": "5.0.x"
      }
    ]
  },
  {
    "product": "Rational Quality Manager",
    "vendor": "IBM",
    "versions": [
      {
        "status": "affected",
        "version": "6.0"
      },
      {
        "status": "affected",
        "version": "6.0.1"
      },
      {
        "status": "affected",
        "version": "6.0.2"
      },
      {
        "status": "affected",
        "version": "6.0.3"
      },
      {
        "status": "affected",
        "version": "6.0.4"
      },
      {
        "status": "affected",
        "version": "6.0.5"
      },
      {
        "status": "affected",
        "version": "5.0.x"
      }
    ]
  },
  {
    "product": "Rational Rhapsody Design Manager",
    "vendor": "IBM",
    "versions": [
      {
        "status": "affected",
        "version": "6.0"
      },
      {
        "status": "affected",
        "version": "6.0.1"
      },
      {
        "status": "affected",
        "version": "6.0.2"
      },
      {
        "status": "affected",
        "version": "6.0.3"
      },
      {
        "status": "affected",
        "version": "6.0.4"
      },
      {
        "status": "affected",
        "version": "6.0.5"
      },
      {
        "status": "affected",
        "version": "5.0.x"
      }
    ]
  },
  {
    "product": "Rational Software Architect Design Manager",
    "vendor": "IBM",
    "versions": [
      {
        "status": "affected",
        "version": "6.0"
      },
      {
        "status": "affected",
        "version": "6.0.1"
      },
      {
        "status": "affected",
        "version": "5.0.x"
      }
    ]
  },
  {
    "product": "Rational Team Concert",
    "vendor": "IBM",
    "versions": [
      {
        "status": "affected",
        "version": "6.0"
      },
      {
        "status": "affected",
        "version": "6.0.1"
      },
      {
        "status": "affected",
        "version": "6.0.2"
      },
      {
        "status": "affected",
        "version": "6.0.3"
      },
      {
        "status": "affected",
        "version": "6.0.4"
      },
      {
        "status": "affected",
        "version": "6.0.5"
      },
      {
        "status": "affected",
        "version": "5.0.x"
      }
    ]
  }
]

Source	Link
exchange	www.exchange.xforce.ibmcloud.com/vulnerabilities/124355
www-prd-trops	www.www-prd-trops.events.ibm.com/node/715709

21 Nov 2024 03:21Current

5.2Medium risk

Vulners AI Score5.2

CVSS 23.5

CVSS 35.4

EPSS0.00182

CWE-79