Rational Requirements Composer@4.0.7 Security Vulnerabilities and Issues — Rational Requirements Composer@4.0.7 CVE List

Lucene search

IbmRational Requirements Composer4.0.7

10 matches found

CVE•added 2017/02/08 7:59 p.m.•50 views

CVE-2017-1127

IBM Rational DOORS Next Generation 4.0, 5.0 and 6.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session.

5.4CVSS5.2AI score0.00303EPSS

CVE•added 2017/02/08 7:59 p.m.•43 views

CVE-2017-1128

IBM Rational DOORS Next Generation 4.0, 5.0, and 6.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session.

5.4CVSS5.2AI score0.00303EPSS

CVE•added 2017/06/12 7:29 p.m.•43 views

CVE-2017-1276

IBM DOORS Next Generation (DNG/RRC) 4.0, 5.0 and 6.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force I...

5.4CVSS5.2AI score0.00269EPSS

CVE•added 2017/08/18 3:29 p.m.•41 views

CVE-2017-1338

IBM DOORS Next Generation (DNG/RRC) 4.0, 5.0, and 6.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ...

5.4CVSS5.2AI score0.00269EPSS

CVE•added 2017/12/13 6:29 p.m.•41 views

CVE-2017-1546

IBM DOORS Next Generation (DNG/RRC) 4.07, 5.0, and 6.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force...

5.4CVSS5.2AI score0.0025EPSS

CVE•added 2017/02/08 7:59 p.m.•39 views

CVE-2016-9748

IBM Rational DOORS Next Generation 5.0 and 6.0 discloses sensitive information in error response messages that could be used for further attacks against the system.

4.3CVSS4.3AI score0.00312EPSS

CVE•added 2017/02/23 4:59 p.m.•38 views

CVE-2016-6055

5.4CVSS5.2AI score0.00258EPSS

CVE•added 2017/02/15 7:59 p.m.•38 views

CVE-2016-6060

An undisclosed vulnerability in IBM Rational DOORS Next Generation 4.0, 5.0, and 6.0 could allow a JazzGuest user to see project names. IBM Reference #: 1995547.

4.3CVSS4.4AI score0.00203EPSS

CVE•added 2017/06/12 7:29 p.m.•38 views

CVE-2017-1247

5.4CVSS5.2AI score0.00269EPSS

CVE•added 2017/06/12 7:29 p.m.•37 views

CVE-2017-1278

IBM DOORS Next Generation (DNG/RRC) 4.0, 5.0 and 6.0 is vulnerable to HTML injection. A remote attacker could inject malicious HTML code, which when viewed, would be executed in the victim's Web browser within the security context of the hosting site. IBM X-Force ID: 124756.

5.4CVSS5.5AI score0.00182EPSS