5 matches found
CVE-2011-2680
CVE-2011-2680 affects IBM Rational DOORS Web Access 1.4.x before 1.4.0.4. The description is explicit that impact is unknown and that there are remote attack vectors related to the server error response. The NVD entry assigns a high base score (10.0) with network attack vector, no authentication,...
CVE-2018-1975
CVE-2018-1975 affects IBM Rational DOORS Web Access. Affected versions include 9.5.1–9.5.2.9 and 9.6–9.6.1.9, where the web UI is vulnerable to cross-site scripting, allowing an attacker to embed arbitrary JavaScript and potentially disclose credentials within a trusted session. Root cause descri...
CVE-2011-2679
CVE-2011-2679 describes a cross-site scripting (XSS) flaw in IBM Rational DOORS Web Access 1.4.x prior to 1.4.0.4. The vulnerability allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, implying user-interaction or trust boundaries could be leveraged to execute ...
CVE-2011-2682
CVE-2011-2682 : The Login component in IBM Rational DOORS Web Access 1.4.x prior to 1.4.0.4 allows remote authenticated users to cause a denial of service via license consumption by logging with a new user account that has never been used to log in before. This is a confirmed issue with affected ...
CVE-2011-2681
IBM Rational DOORS Web Access 1.4.x prior to 1.4.0.4 is affected by an issue where exceptions are not handled properly, described as having unspecified impact and remote attack vectors. The root cause is improper exception handling in the affected component. Remediation is to upgrade to 1.4.0.4 o...