CVE: CVE-2017-1293

Descrizione: IBM Rational Quality Manager and IBM Rational Collaborative Lifecycle Management 5.0 through 5.0.2 and 6.0 through 6.0.5 are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 125154.

Vettore di attacco

Riferimenti esterni

• https://exchange.xforce.ibmcloud.com/vulnerabilities/125154
• https://www-prd-trops.events.ibm.com/node/715749

Prodotti interessati

• IBM – Rational Quality Manager
• IBM – Rational Collaborative Lifecycle Management

Relazioni con altri prodotti

Produttore:IBM
Prodotto: Rational Collaborative Lifecycle Management
Anno: 2017
CWE:
CVSS: 0.0

Produttore:IBM
Prodotto: Rational Quality Manager
Anno: 2017
CWE:
CVSS: 0.0

Ulteriori risorse disponibili

• Vulnerabilità scoperte nello stesso anno (2017)