2 matches found
Security Bulletin: Cross-site scripting vulnerabilities affect multiple IBM Rational products based on IBM Jazz technology
Summary Cross-site scripting vulnerabilities affect multiple products: Collaborative Lifecycle Management CLM, Rational DOORS Next Generation RDNG, Rational Engineering Lifecycle Manager RELM, Rational Team Concert RTC, Rational Quality Manager RQM, Rational Rhapsody Design Manager Rhapsody DM an...
CVE-2018-1558
CVE-2018-1558 describes cross-site scripting in IBM Rational CLM and related Jazz-based products. Affected products include CLM, RDNG, RELM, RTC, RQM, Rhapsody DM, and RSA DM across 5.x and 6.x (up to 6.0.6). The vulnerability arises from a Web UI XSS flaw that can lead to credential disclosure w...