Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2015-7439
HistoryJan 27, 2016 - 5:59 a.m.

CVE-2015-7439

2016-01-2705:59:00
CWE-79
[email protected]
web.nvd.nist.gov
5

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

CVSS3

6.1

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

EPSS

0.001

Percentile

46.7%

JSON

Cross-site scripting (XSS) vulnerability in InfoSphere Data Architect (IDA), as distributed in IBM Rational Software Architect 8.5 through 9.5, Rational Software Architect for WebSphere Software (RSA4WS) 8.5 through 9.5, and Rational Software Architect RealTime (RSART) 8.5 through 9.5, allows remote attackers to inject arbitrary web script or HTML via a crafted URL.

Affected configurations

Nvd
Node
ibmrational_software_architect_realtimeMatch8.5.0
OR
ibmrational_software_architect_realtimeMatch8.5.1
OR
ibmrational_software_architect_realtimeMatch8.5.1.0
OR
ibmrational_software_architect_realtimeMatch8.5.5
OR
ibmrational_software_architect_realtimeMatch8.5.5.1
OR
ibmrational_software_architect_realtimeMatch8.5.5.2
OR
ibmrational_software_architect_realtimeMatch8.5.5.3
OR
ibmrational_software_architect_realtimeMatch8.5.5.4
OR
ibmrational_software_architect_realtimeMatch9.0.0
OR
ibmrational_software_architect_realtimeMatch9.0.0.1
OR
ibmrational_software_architect_realtimeMatch9.1.0
OR
ibmrational_software_architect_realtimeMatch9.1.1
OR
ibmrational_software_architect_realtimeMatch9.1.2
OR
ibmrational_software_architect_realtimeMatch9.1.2.1
OR
ibmrational_software_architect_realtimeMatch9.5.0
Node
ibmrational_software_architect_for_websphere_softwareMatch8.5.0
OR
ibmrational_software_architect_for_websphere_softwareMatch8.5.1
OR
ibmrational_software_architect_for_websphere_softwareMatch8.5.1.0
OR
ibmrational_software_architect_for_websphere_softwareMatch8.5.5
OR
ibmrational_software_architect_for_websphere_softwareMatch8.5.5.2
OR
ibmrational_software_architect_for_websphere_softwareMatch8.5.5.3
OR
ibmrational_software_architect_for_websphere_softwareMatch8.5.5.4
OR
ibmrational_software_architect_for_websphere_softwareMatch9.0.0
OR
ibmrational_software_architect_for_websphere_softwareMatch9.0.0.1
OR
ibmrational_software_architect_for_websphere_softwareMatch9.1.0
OR
ibmrational_software_architect_for_websphere_softwareMatch9.1.1
OR
ibmrational_software_architect_for_websphere_softwareMatch9.1.2
OR
ibmrational_software_architect_for_websphere_softwareMatch9.1.2.1
OR
ibmrational_software_architect_for_websphere_softwareMatch9.5.0
OR
ibmrational_software_architect_for_websphere_software\'Match8.5.5.1
Node
ibmrational_software_architectMatch8.5.0
OR
ibmrational_software_architectMatch8.5.1
OR
ibmrational_software_architectMatch8.5.1.0
OR
ibmrational_software_architectMatch8.5.5
OR
ibmrational_software_architectMatch8.5.5.1
OR
ibmrational_software_architectMatch8.5.5.2
OR
ibmrational_software_architectMatch8.5.5.3
OR
ibmrational_software_architectMatch8.5.5.4
OR
ibmrational_software_architectMatch9.0.0
OR
ibmrational_software_architectMatch9.0.0.1
OR
ibmrational_software_architectMatch9.1.0
OR
ibmrational_software_architectMatch9.1.1
OR
ibmrational_software_architectMatch9.1.2
OR
ibmrational_software_architectMatch9.1.2.1
OR
ibmrational_software_architectMatch9.5.0
VendorProductVersionCPE
ibmrational_software_architect_realtime8.5.0cpe:2.3:a:ibm:rational_software_architect_realtime:8.5.0:*:*:*:*:*:*:*
ibmrational_software_architect_realtime8.5.1cpe:2.3:a:ibm:rational_software_architect_realtime:8.5.1:*:*:*:*:*:*:*
ibmrational_software_architect_realtime8.5.1.0cpe:2.3:a:ibm:rational_software_architect_realtime:8.5.1.0:*:*:*:*:*:*:*
ibmrational_software_architect_realtime8.5.5cpe:2.3:a:ibm:rational_software_architect_realtime:8.5.5:*:*:*:*:*:*:*
ibmrational_software_architect_realtime8.5.5.1cpe:2.3:a:ibm:rational_software_architect_realtime:8.5.5.1:*:*:*:*:*:*:*
ibmrational_software_architect_realtime8.5.5.2cpe:2.3:a:ibm:rational_software_architect_realtime:8.5.5.2:*:*:*:*:*:*:*
ibmrational_software_architect_realtime8.5.5.3cpe:2.3:a:ibm:rational_software_architect_realtime:8.5.5.3:*:*:*:*:*:*:*
ibmrational_software_architect_realtime8.5.5.4cpe:2.3:a:ibm:rational_software_architect_realtime:8.5.5.4:*:*:*:*:*:*:*
ibmrational_software_architect_realtime9.0.0cpe:2.3:a:ibm:rational_software_architect_realtime:9.0.0:*:*:*:*:*:*:*
ibmrational_software_architect_realtime9.0.0.1cpe:2.3:a:ibm:rational_software_architect_realtime:9.0.0.1:*:*:*:*:*:*:*
Rows per page:
1-10 of 451

Related

prion 1
ibm 4
cvelist 1
cve 1
prion
prion
Cross site scripting
2016-01-27 05:59:00
ibm
ibm
Security Bulletin: A security vulnerability has been identified in InfoSphere Data Architect (IDA) that allows remote attackers to inject arbitrary web script or HTML via a crafted URL. (CVE-2015-7439)
2018-06-16 13:38:20
Security Bulletin: A security vulnerability has been identified in IBM Rational Application Developer shipped with IBM Business Modeler (CVE-2015-7439)
2018-06-15 07:05:39
Security Bulletin: Vulnerability in IBM InfoSphere Data Architect Cross-Site Scripting affects Rational Software Architect, Rational Software Architect for WebSphere Software and Rational Software Architect RealTime (CVE-2015-7439)
2020-09-10 15:49:00
cvelist
cvelist
CVE-2015-7439
2016-01-27 02:00:00
cve
cve
CVE-2015-7439
2016-01-27 05:59:00

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

CVSS3

6.1

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

EPSS

0.001

Percentile

46.7%

JSON
Related for NVD:CVE-2015-7439
prion1ibm4cvelist1cve1