Rational Quality Manager Security Vulnerabilities and Issues — Rational Quality Manager CVE List

Lucene search

IbmRational Quality Manager

3 matches found

CVE•added 2017/03/31 6:59 p.m.•45 views

CVE-2016-9707

IBM Jazz Foundation is vulnerable to a denial of service, caused by an XML External Entity Injection (XXE) error when processing XML data. A remote attacker could exploit this vulnerability to expose highly sensitive information or consume all available memory resources. IBM Reference #: 2000784.

8.1CVSS8.1AI score0.00359EPSS

CVE•added 2017/05/10 2:29 p.m.•42 views

CVE-2017-1103

IBM Team Concert (RTC) is vulnerable to a denial of service, caused by an XML External Entity Injection (XXE) error when processing XML data. A remote attacker could exploit this vulnerability to expose highly sensitive information or consume all available memory resources. IBM X-Force ID: 120665.

8.1CVSS8AI score0.00378EPSS

CVE•added 2016/10/22 3:59 a.m.•37 views

CVE-2016-0326

IBM Rational Quality Manager (RQM) and Rational Collaborative Lifecycle Management 3.0.1.6 before iFix8, 4.x before 4.0.7 iFix11, 5.x before 5.0.2 iFix17, and 6.x before 6.0.1 ifix3 allow remote authenticated users to execute arbitrary OS commands via a crafted "HTML request."

8.8CVSS8.5AI score0.00894EPSS