2 matches found
Security Bulletin: Multiple security vulnerabilities have been identified in Jazz Reporting Service shipped with Rational Reporting for Development Intelligence (CVE-2017-1750, CVE-2018-1363)
Summary Jazz Reporting Service is shipped as a component of Rational Reporting for Development Intelligence RRDI. Information about multiple security vulnerabilities affecting Jazz Reporting Service has been published in a security bulletin. Vulnerability Details CVEID: CVE-2017-1750 DESCRIPTION:...
CVE-2017-1750
CVE-2017-1750 affects IBM Jazz Reporting Service (JRS): Cross-site scripting in JRS 5.0–5.0.2 and 6.0–6.0.5, enabling an attacker to inject arbitrary JavaScript in the Web UI and potentially disclose credentials in a trusted session. The IBM security bulletins list affected products/versions and ...