Rational Collaborative Lifecycle Management@6.0.0 Security Vulnerabilities and Issues — Rational Collaborative Lifecycle Management@6.0.0 CVE List

Lucene search

IbmRational Collaborative Lifecycle Management6.0.0

32 matches found

CVE•added 2016/11/24 7:59 p.m.•54 views

CVE-2016-0273

Cross-site scripting (XSS) vulnerability in IBM Rational Collaborative Lifecycle Management 3.0.1.6 before iFix8, 4.0 before 4.0.7 iFix11, 5.0 before 5.0.2 iFix18, and 6.0 before 6.0.2 iFix5; Rational Quality Manager 3.0.1.6 before iFix8, 4.0 before 4.0.7 iFix11, 5.0 before 5.0.2 iFix18, and 6.0 be...

5.4CVSS5.1AI score0.00168EPSS

CVE•added 2018/07/03 7:29 p.m.•51 views

CVE-2017-1717

IBM Rational Quality Manager and IBM Rational Collaborative Lifecycle Management 5.0 through 5.0.2 and 6.0 through 6.0.5 are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially lead...

5.4CVSS5.4AI score0.00182EPSS

CVE•added 2016/11/24 7:59 p.m.•47 views

CVE-2016-0284

The XML parser in IBM Rational Collaborative Lifecycle Management 3.0.1.6 before iFix8, 4.0 before 4.0.7 iFix11, 5.0 before 5.0.2 iFix18, and 6.0 before 6.0.2 iFix5; Rational Quality Manager 3.0.1.6 before iFix8, 4.0 before 4.0.7 iFix11, 5.0 before 5.0.2 iFix18, and 6.0 before 6.0.2 iFix5; Rational...

5.5CVSS5.5AI score0.00334EPSS

CVE•added 2018/07/03 7:29 p.m.•47 views

CVE-2017-1277

5.4CVSS5.4AI score0.00182EPSS

CVE•added 2016/11/24 7:59 p.m.•46 views

CVE-2016-0372

IBM Rational Collaborative Lifecycle Management 3.0.1.6 before iFix8, 4.0 before 4.0.7 iFix11, 5.0 before 5.0.2 iFix18, and 6.0 before 6.0.2 iFix5; Rational Quality Manager 3.0.1.6 before iFix8, 4.0 before 4.0.7 iFix11, 5.0 before 5.0.2 iFix18, and 6.0 before 6.0.2 iFix5; Rational Team Concert 3.0....

4.3CVSS4.5AI score0.00263EPSS

CVE•added 2017/02/01 8:59 p.m.•46 views

CVE-2016-6061

IBM Jazz Foundation is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session.

5.4CVSS5.2AI score0.00227EPSS

CVE•added 2018/07/03 7:29 p.m.•46 views

CVE-2017-1299

5.4CVSS5.4AI score0.002EPSS

CVE•added 2016/11/25 3:59 a.m.•43 views

CVE-2016-2947

IBM Rational Collaborative Lifecycle Management 4.0 before 4.0.7 iFix11, 5.0 before 5.0.2 iFix18, and 6.0 before 6.0.2 iFix5; Rational Quality Manager 4.0 before 4.0.7 iFix11, 5.0 before 5.0.2 iFix18, and 6.0 before 6.0.2 iFix5; Rational Team Concert 4.0 before 4.0.7 iFix11, 5.0 before 5.0.2 iFix18...

4CVSS3.2AI score0.00178EPSS

CVE•added 2018/07/03 7:29 p.m.•43 views

CVE-2017-1293

5.4CVSS5.4AI score0.00182EPSS

CVE•added 2017/02/01 8:59 p.m.•41 views

CVE-2016-6028

IBM Jazz technology based products might allow an attacker to view work item titles that they do not have privilege to view.

4.3CVSS4.7AI score0.00179EPSS

CVE•added 2017/06/22 6:29 p.m.•41 views

CVE-2016-9747

IBM RELM 4.0, 5.0 and 6.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session.

5.4CVSS5.2AI score0.00269EPSS

CVE•added 2017/02/01 8:59 p.m.•40 views

CVE-2016-6030

5.4CVSS5.2AI score0.00227EPSS

CVE•added 2017/02/08 7:59 p.m.•40 views

CVE-2016-6032

IBM Rational Team Concert 4.0, 5.0 and 6.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session.

5.4CVSS5.2AI score0.00303EPSS

CVE•added 2017/07/05 5:29 p.m.•40 views

CVE-2016-9701

IBM Team Concert 4.0, 5.0 and 6.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 119529.

5.4CVSS5.2AI score0.00272EPSS

CVE•added 2018/07/03 7:29 p.m.•40 views

CVE-2017-1294

5.4CVSS5.4AI score0.00162EPSS

CVE•added 2018/07/03 7:29 p.m.•40 views

CVE-2017-1306

5.4CVSS5.4AI score0.00182EPSS

CVE•added 2017/02/08 7:59 p.m.•39 views

CVE-2016-2866

An unspecified vulnerability in IBM Jazz Team Server may disclose some deployment information to an authenticated user.

4.3CVSS4.5AI score0.00312EPSS

CVE•added 2017/02/01 8:59 p.m.•39 views

CVE-2016-6040

IBM Jazz Foundation could allow an authenticated user to take over a previously logged in user due to session expiration not being enforced.

6CVSS4.9AI score0.00193EPSS

CVE•added 2018/07/03 7:29 p.m.•39 views

CVE-2017-1280

5.4CVSS5.4AI score0.00182EPSS

CVE•added 2018/07/03 7:29 p.m.•39 views

CVE-2017-1281

5.4CVSS5.4AI score0.00162EPSS

CVE•added 2018/07/03 7:29 p.m.•38 views

CVE-2017-1691

5.4CVSS5.4AI score0.00182EPSS

CVE•added 2016/10/22 3:59 a.m.•37 views

CVE-2016-0326

IBM Rational Quality Manager (RQM) and Rational Collaborative Lifecycle Management 3.0.1.6 before iFix8, 4.x before 4.0.7 iFix11, 5.x before 5.0.2 iFix17, and 6.x before 6.0.1 ifix3 allow remote authenticated users to execute arbitrary OS commands via a crafted "HTML request."

8.8CVSS8.5AI score0.00894EPSS

CVE•added 2016/11/24 7:59 p.m.•37 views

CVE-2016-2864

5.4CVSS5.1AI score0.00168EPSS

CVE•added 2018/07/03 7:29 p.m.•37 views

CVE-2017-1715

5.4CVSS5.4AI score0.00182EPSS

CVE•added 2018/07/03 7:29 p.m.•36 views

CVE-2017-1275

5.4CVSS5.4AI score0.00182EPSS

CVE•added 2016/07/15 6:59 p.m.•35 views

CVE-2016-2865

The GIT Integration component in IBM Rational Team Concert (RTC) 5.x before 5.0.2 iFix14 and 6.x before 6.0.1 iFix5 and Rational Collaborative Lifecycle Management 5.x before 5.0.2 iFix14 and 6.x before 6.0.1 iFix5 allows remote authenticated users to obtain sensitive information via a malformed re...

6.5CVSS5.8AI score0.00202EPSS

CVE•added 2017/02/15 7:59 p.m.•34 views

CVE-2016-8968

5.4CVSS5.2AI score0.00657EPSS

CVE•added 2017/07/05 5:29 p.m.•34 views

CVE-2016-9733

IBM Team Concert (RTC) 4.0, 5.0 and 6.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 119762.

5.4CVSS5.2AI score0.00272EPSS

CVE•added 2017/07/05 5:29 p.m.•34 views

CVE-2016-9746

5.4CVSS5.2AI score0.00272EPSS

CVE•added 2016/11/25 8:59 p.m.•33 views

CVE-2016-2926

Cross-site scripting (XSS) vulnerability in IBM Rational Collaborative Lifecycle Management 4.0 before 4.0.7 iFix11, 5.0 before 5.0.2 iFix19, and 6.0 before 6.0.2 iFix3; Rational Quality Manager 4.0 before 4.0.7 iFix11, 5.0 before 5.0.2 iFix19, and 6.0 before 6.0.2 iFix3; Rational Team Concert 4.0 ...

5.4CVSS4.9AI score0.00541EPSS

CVE•added 2018/07/03 7:29 p.m.•33 views

CVE-2017-1250

5.4CVSS5.5AI score0.00182EPSS

CVE•added 2017/07/05 6:29 p.m.•32 views

CVE-2016-9700

IBM Jazz Foundation could allow an authenticated attacker to obtain sensitive information from error message stack traces. IBM X-Force ID: 119528.

4.3CVSS4.1AI score0.00177EPSS