Shodan
Vulnerabilities
Vulnerable Software
Ibm:  >> Rational Collaborative Lifecycle Management  Security Vulnerabilities
CVE-2017-1099
IBM Jazz Foundation could expose potentially sensitive information to authenticated users through stack trace error conditions. IBM X-Force ID: 120659.
CVSS Score
4.3
EPSS Score
0.355
Published
2017-06-13
CVE-2016-9735
IBM Jazz Foundation could allow an authenticated user to obtain sensitive information from stack traces. IBM X-Force ID: 119781,
CVSS Score
4.3
EPSS Score
0.002
Published
2017-05-15
CVE-2016-9707
IBM Jazz Foundation is vulnerable to a denial of service, caused by an XML External Entity Injection (XXE) error when processing XML data. A remote attacker could exploit this vulnerability to expose highly sensitive information or consume all available memory resources. IBM Reference #: 2000784.
CVSS Score
8.1
EPSS Score
0.004
Published
2017-03-31
CVE-2016-2981
An undisclosed vulnerability in the CLM applications in IBM Jazz Team Server may allow unauthorized access to user credentials. IBM Reference #: 1999965.
CVSS Score
6.8
EPSS Score
0.001
Published
2017-03-20
CVE-2016-8968
IBM Jazz Foundation is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM Reference #: 1998515.
CVSS Score
5.4
EPSS Score
0.007
Published
2017-02-15
CVE-2016-2866
An unspecified vulnerability in IBM Jazz Team Server may disclose some deployment information to an authenticated user.
CVSS Score
4.3
EPSS Score
0.003
Published
2017-02-08
CVE-2016-6032
IBM Rational Team Concert 4.0, 5.0 and 6.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session.
CVSS Score
5.4
EPSS Score
0.003
Published
2017-02-08
CVE-2016-6061
IBM Jazz Foundation is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session.
CVSS Score
5.4
EPSS Score
0.002
Published
2017-02-01
CVE-2016-6028
IBM Jazz technology based products might allow an attacker to view work item titles that they do not have privilege to view.
CVSS Score
4.3
EPSS Score
0.002
Published
2017-02-01
CVE-2016-6030
IBM Jazz Foundation is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session.
CVSS Score
5.4
EPSS Score
0.002
Published
2017-02-01


Products
Pricing
Contact Us

Shodan ® - All rights reserved