Security Bulletin: Multiple security vulnerabilities have been identified in Jazz Reporting Service shipped with Rational Reporting for Development Intelligence (CVE-2016-5898, CVE-2016-5899, CVE-2016-6054)

Summary Jazz Reporting Service is shipped as a component of Rational Reporting for Development Intelligence RRDI. Information about multiple security vulnerabilities affecting Jazz Reporting Service has been published in a security bulletin. Vulnerability Details Consult the security bulletin...

Security Bulletin: Multiple security vulnerabilities have been identified in Jazz Reporting Service shipped with Rational Insight (CVE-2016-5898, CVE-2016-5899, CVE-2016-6054)

Summary Jazz Reporting Service is shipped as a component of Rational Insight. Information about multiple security vulnerabilities affecting Jazz Reporting Service has been published in a security bulletin. Vulnerability Details Consult the security bulletin Security Bulletin: Multiple security...

Security Bulletin: Multiple security vulnerabilities affect the Report Builder and Data Collection Component that are shipped with Jazz Reporting Service (CVE-2016-5898, CVE-2016-5899, CVE-2016-6054, CVE-2016-6047)

Summary There are multiple security vulnerabilities in the Report Builder and Data Collection Component DCC shipped with Jazz Reporting Service. Vulnerability Details CVEID: CVE-2016-5898 DESCRIPTION: IBM Jazz Reporting Service JRS could allow a remote attacker to obtain sensitive information,...

CVE-2016-5899

CVE-2016-5899: IBM Jazz Reporting Service (JRS) is vulnerable to cross-site scripting in the Web UI. Affected Jazz Reporting Service versions: 5.0, 5.0.1, 5.0.2, 6.0, 6.0.1, and 6.0.2. The issue stems from JRS allowing arbitrary JavaScript execution via user input in the UI, potentially leading t...