4 matches found
Security Bulletin: Multiple security vulnerabilities have been identified in Jazz Reporting Service shipped with Rational Reporting for Development Intelligence (CVE-2016-5898, CVE-2016-5899, CVE-2016-6054)
Summary Jazz Reporting Service is shipped as a component of Rational Reporting for Development Intelligence RRDI. Information about multiple security vulnerabilities affecting Jazz Reporting Service has been published in a security bulletin. Vulnerability Details Consult the security bulletin...
Security Bulletin: Multiple security vulnerabilities affect the Report Builder and Data Collection Component that are shipped with Jazz Reporting Service (CVE-2016-5898, CVE-2016-5899, CVE-2016-6054, CVE-2016-6047)
Summary There are multiple security vulnerabilities in the Report Builder and Data Collection Component DCC shipped with Jazz Reporting Service. Vulnerability Details CVEID: CVE-2016-5898 DESCRIPTION: IBM Jazz Reporting Service JRS could allow a remote attacker to obtain sensitive information,...
CVE-2016-6047
IBM Jazz Reporting Service JRS is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session...
CVE-2016-6047
The CVE-2016-6047 entry concerns IBM Jazz Reporting Service (JRS). The connected IBM bulletins confirm this vulnerability is a cross-site scripting flaw in JRS (UI), capable of embedded arbitrary JavaScript and potentially leading to credential disclosure within a trusted session. Affected produc...