threat
engine
.sh
Back
·
··:··
Home
/
Product
/
ibm rational collaborative lifecycle management
Product
ibm rational collaborative lifecycle management
141 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
Sort
Newest first
Oldest first
Highest CVSS
Lowest CVSS
Min CVSS
Any
4.0+
7.0+ (High)
9.0+ (Critical)
Published since
Reset
CVE-2021-29786
all versions
IBM Jazz Team Server products stores user credentials in clear text which can be read by an authenticated user. IBM X-Force ID: 20
6.5
MEDIUM
CVE-2021-29774
all versions
IBM Jazz Team Server products could allow an authenticated user to obtain elevated privileges under certain configurations. IBM X-
7.5
HIGH
CVE-2021-29713
all versions
IBM Jazz Team Server products are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScrip
5.4
MEDIUM
CVE-2021-29673
all versions
IBM Jazz Team Server products are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScrip
5.4
MEDIUM
CVE-2020-5004
all versions
IBM Jazz Foundation products are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript
5.4
MEDIUM
CVE-2020-4974
all versions
IBM Jazz Foundation products are vulnerable to server side request forgery (SSRF). This may allow an authenticated attacker to sen
6.3
MEDIUM
CVE-2021-20507
all versions
IBM Jazz Foundation and IBM Engineering products are vulnerable to cross-site scripting. This vulnerability allows users to embed
5.4
MEDIUM
CVE-2020-5031
all versions
IBM Jazz Foundation and IBM Engineering products are vulnerable to cross-site scripting. This vulnerability allows users to embed
5.4
MEDIUM
CVE-2020-4546
all versions
IBM Jazz Team Server based Applications are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary
5.4
MEDIUM
CVE-2020-4522
all versions
IBM Jazz Team Server based Applications are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary
5.4
MEDIUM
CVE-2020-4445
all versions
IBM Jazz Team Server based Applications are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary
5.4
MEDIUM
CVE-2019-4252
>= 6.0 and <= 6.0.6.1
IBM Rational Collaborative Lifecycle Management 6.0 through 6.0.6.1 could allow a remote attacker to traverse directories on the s
7.5
HIGH
CVE-2019-4250
>= 6.0 and <= 6.0.6.1
IBM Jazz Foundation products (IBM Rational Collaborative Lifecycle Management 6.0 through 6.0.6.1) is vulnerable to cross-site scr
5.4
MEDIUM
CVE-2019-4249
>= 6.0 and <= 6.0.6.1
IBM Rational Collaborative Lifecycle Management 6.0 through 6.0.6.1 is vulnerable to cross-site scripting. This vulnerability allo
5.4
MEDIUM
CVE-2019-4084
>= 6.0 and <= 6.0.6.1
IBM Jazz Foundation products (IBM Rational Collaborative Lifecycle Management 6.0 through 6.0.6.1) could allow an authenticated us
4.3
MEDIUM
CVE-2019-4083
>= 6.0 and <= 6.0.6.1
IBM Jazz Foundation products (IBM Rational Collaborative Lifecycle Management 6.0 through 6.0.6.1) is vulnerable to cross-site scr
5.4
MEDIUM
CVE-2018-1893
>= 6.0 and <= 6.0.6.1
IBM Rational Collaborative Lifecycle Management 6.0 through 6.0.6.1 is vulnerable to cross-site scripting. This vulnerability allo
5.4
MEDIUM
CVE-2018-1892
>= 6.0 and <= 6.0.6.1
IBM Rational Collaborative Lifecycle Management 6.0 through 6.0.6.1 is vulnerable to cross-site scripting. This vulnerability allo
5.4
MEDIUM
CVE-2018-1828
>= 6.0 and <= 6.0.6.1
IBM Rational Collaborative Lifecycle Management 6.0 through 6.0.6.1 is vulnerable to cross-site scripting. This vulnerability allo
5.4
MEDIUM
CVE-2018-1827
>= 6.0 and <= 6.0.6.1
IBM Rational Collaborative Lifecycle Management 6.0 through 6.0.6.1 is vulnerable to cross-site scripting. This vulnerability allo
5.4
MEDIUM
CVE-2018-1826
>= 6.0 and <= 6.0.6.1
IBM Rational Collaborative Lifecycle Management 6.0 through 6.0.6.1 is vulnerable to cross-site scripting. This vulnerability allo
5.4
MEDIUM
CVE-2018-1760
>= 6.0 and <= 6.0.6.1
IBM Rational Collaborative Lifecycle Management 6.0 through 6.0.6.1 is vulnerable to cross-site scripting. This vulnerability allo
5.4
MEDIUM
CVE-2018-1758
>= 6.0 and <= 6.0.6.1
IBM Rational Collaborative Lifecycle Management 6.0 through 6.0.6.1 is vulnerable to cross-site scripting. This vulnerability allo
5.4
MEDIUM
CVE-2018-1734
>= 6.0 and <= 6.0.6.1
IBM Rational Collaborative Lifecycle Management 6.0 through 6.0.6.1 discloses sensitive information in error messages that may be
4.3
MEDIUM
CVE-2018-1983
>= 5.0 and <= 6.0.6
IBM Rational Team Concert 5.0 through 6.0.6 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitr
5.4
MEDIUM
CVE-2018-1952
>= 5.0 and <= 6.0.6
IBM Jazz Foundation (IBM Rational Engineering Lifecycle Manager 5.0 through 6.0.6) is vulnerable to cross-site scripting. This vul
5.4
MEDIUM
CVE-2018-1916
>= 5.0 and <= 6.0.6
IBM Jazz Foundation (IBM Rational Engineering Lifecycle Manager 5.0 through 6.0.6) is vulnerable to cross-site scripting. This vul
5.4
MEDIUM
CVE-2018-1829
>= 5.0 and <= 6.0.6
IBM Rational Quality Manager 5.0 through 6.0.6 is vulnerable to cross-site scripting. This vulnerability allows users to embed arb
5.4
MEDIUM
CVE-2018-1825
>= 5.0 and <= 6.0.6
IBM Rational Quality Manager 5.0 through 6.0.6 is vulnerable to cross-site scripting. This vulnerability allows users to embed arb
5.4
MEDIUM
CVE-2018-1824
>= 5.0 and <= 6.0.6
IBM Rational Quality Manager 5.0 through 6.0.6 is vulnerable to cross-site scripting. This vulnerability allows users to embed arb
5.4
MEDIUM
CVE-2018-1823
>= 5.0 and <= 6.0.6
IBM Rational Quality Manager 5.0 through 6.0.6 is vulnerable to cross-site scripting. This vulnerability allows users to embed arb
5.4
MEDIUM
CVE-2018-1688
>= 5.0 and <= 6.0.6
IBM Jazz Foundation (IBM Rational Collaborative Lifecycle Management 5.0 through 6.0.6) is vulnerable to cross-site scripting. Thi
5.4
MEDIUM
CVE-2018-1658
>= 5.0 and <= 6.0.6
IBM Jazz Foundation (IBM Rational Collaborative Lifecycle Management 5.0 through 6.0.6) is vulnerable to HTTP header injection, ca
5.4
MEDIUM
CVE-2018-1762
>= 5.0.0 and <= 6.0.6
IBM Rational Collaborative Lifecycle Management 5.0 through 5.0.2 and 6.0 through 6.0.6 are vulnerable to cross-site scripting. Th
5.4
MEDIUM
CVE-2018-1694
>= 5.0.0 and <= 6.0.6
IBM Jazz applications (IBM Rational Collaborative Lifecycle Management 5.0 through 5.02 and 6.0 through 6.0.6, IBM Rational DOORS
5.9
MEDIUM
CVE-2018-1606
>= 5.0.0 and <= 6.0.6
IBM Jazz based applications (IBM Rational Collaborative Lifecycle Management 5.0 through 5.02 and 6.0 through 6.0.6, IBM Rational
4.3
MEDIUM
CVE-2018-1558
>= 5.0 and <= 6.0.6
IBM Rational Collaborative Lifecycle Management 5.0 through 5.02 and 6.0 through 6.0.6 are vulnerable to cross-site scripting. Thi
5.4
MEDIUM
CVE-2018-1492
>= 5.0 and <= 6.0.5
IBM Jazz Foundation products could allow a user with physical access to the system to log in as another user due to the server's f
4.3
MEDIUM
CVE-2018-1423
>= 5.0 and <= 6.0.5
IBM Jazz Foundation products could disclose sensitive information to an authenticated attacker that could be used in further attac
4.3
MEDIUM
CVE-2017-1559
>= 6.0.0 and <= 6.0.5
Multiple IBM Rational products could disclose sensitive information by an attacker that intercepts vulnerable requests. IBM X-Forc
3.1
LOW
CVE-2017-1509
>= 6.0.0 and <= 6.0.5
IBM Jazz Foundation products could allow an authenticated user to obtain sensitive information from a stack trace that could be us
4.3
MEDIUM
CVE-2017-1488
>= 6.0.0 and <= 6.0.5
An undisclosed vulnerability in Jazz common products exists with potential for information disclosure. IBM X-Force ID: 128627.
3.7
LOW
CVE-2017-1329
>= 5.0.0 and <= 6.0.3
IBM Quality Manager (RQM) 5.0.x and 6.0 through 6.0.5 are vulnerable to HTML injection. A remote attacker could inject malicious H
5.4
MEDIUM
CVE-2017-1248
>= 5.0.0 and <= 6.0.3
IBM Quality Manager (RQM) 5.0.x and 6.0 through 6.0.5 are vulnerable to HTML injection. A remote attacker could inject malicious H
5.4
MEDIUM
CVE-2017-1242
>= 5.0.0 and <= 6.0.3
IBM Quality Manager (RQM) 5.0.x and 6.0 through 6.0.5 are vulnerable to HTML injection. A remote attacker could inject malicious H
5.4
MEDIUM
CVE-2017-1239
>= 5.0.0 and <= 6.0.3
IBM Quality Manager (RQM) 5.0.x and 6.0 through 6.0.5 could reveal sensitive information in HTTP 500 Internal Server Error respons
4.3
MEDIUM
CVE-2017-1238
>= 5.0.0 and <= 6.0.3
IBM Quality Manager (RQM) 5.0.x and 6.0 through 6.0.5 are vulnerable to cross-site scripting. This vulnerability allows users to e
5.4
MEDIUM
CVE-2017-1237
>= 6.0.0 and <= 6.0.5
IBM Jazz based applications are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript
5.4
MEDIUM
CVE-2017-1717
all versions
IBM Rational Quality Manager and IBM Rational Collaborative Lifecycle Management 5.0 through 5.0.2 and 6.0 through 6.0.5 are vulne
5.4
MEDIUM
CVE-2017-1715
all versions
IBM Rational Quality Manager and IBM Rational Collaborative Lifecycle Management 5.0 through 5.0.2 and 6.0 through 6.0.5 are vulne
5.4
MEDIUM
CVE-2017-1691
all versions
IBM Rational Quality Manager and IBM Rational Collaborative Lifecycle Management 5.0 through 5.0.2 and 6.0 through 6.0.5 are vulne
5.4
MEDIUM
CVE-2017-1690
all versions
IBM Rational Quality Manager and IBM Rational Collaborative Lifecycle Management 5.0 through 5.0.2 and 6.0 through 6.0.5 are vulne
5.4
MEDIUM
CVE-2017-1652
all versions
IBM Rational Quality Manager and IBM Rational Collaborative Lifecycle Management 5.0 through 5.0.2 and 6.0 through 6.0.5 are vulne
5.4
MEDIUM
CVE-2017-1651
all versions
IBM Rational Quality Manager and IBM Rational Collaborative Lifecycle Management 5.0 through 5.0.2 and 6.0 through 6.0.5 are vulne
5.4
MEDIUM
CVE-2017-1621
all versions
IBM Rational Quality Manager and IBM Rational Collaborative Lifecycle Management 5.0 through 5.0.2 and 6.0 through 6.0.5 are vulne
5.4
MEDIUM
CVE-2017-1608
all versions
IBM Rational Quality Manager and IBM Rational Collaborative Lifecycle Management 5.0 through 5.0.2 and 6.0 through 6.0.5 are vulne
5.4
MEDIUM
CVE-2017-1592
all versions
IBM Rational Quality Manager and IBM Rational Collaborative Lifecycle Management 5.0 through 5.0.2 and 6.0 through 6.0.5 are vulne
5.4
MEDIUM
CVE-2017-1568
all versions
IBM Rational Quality Manager and IBM Rational Collaborative Lifecycle Management 5.0 through 5.0.2 and 6.0 through 6.0.5 are vulne
5.4
MEDIUM
CVE-2017-1565
all versions
IBM Rational Quality Manager and IBM Rational Collaborative Lifecycle Management 5.0 through 5.0.2 and 6.0 through 6.0.5 are vulne
5.4
MEDIUM
CVE-2017-1564
all versions
IBM Rational Quality Manager and IBM Rational Collaborative Lifecycle Management 5.0 through 5.0.2 and 6.0 through 6.0.5 are vulne
5.4
MEDIUM
CVE-2017-1562
all versions
IBM Rational Quality Manager and IBM Rational Collaborative Lifecycle Management 5.0 through 5.0.2 and 6.0 through 6.0.5 are vulne
5.4
MEDIUM
CVE-2017-1561
all versions
IBM Rational Quality Manager and IBM Rational Collaborative Lifecycle Management 5.0 through 5.0.2 and 6.0 through 6.0.5 are vulne
5.4
MEDIUM
CVE-2017-1317
all versions
IBM Rational Quality Manager and IBM Rational Collaborative Lifecycle Management 5.0 through 5.0.2 and 6.0 through 6.0.5 are vulne
5.4
MEDIUM
CVE-2017-1316
all versions
IBM Rational Quality Manager and IBM Rational Collaborative Lifecycle Management 5.0 through 5.0.2 and 6.0 through 6.0.5 are vulne
5.4
MEDIUM
CVE-2017-1315
all versions
IBM Rational Quality Manager and IBM Rational Collaborative Lifecycle Management 5.0 through 5.0.2 and 6.0 through 6.0.5 are vulne
5.4
MEDIUM
CVE-2017-1314
all versions
IBM Rational Quality Manager and IBM Rational Collaborative Lifecycle Management 5.0 through 5.0.2 and 6.0 through 6.0.5 are vulne
5.4
MEDIUM
CVE-2017-1313
all versions
IBM Rational Quality Manager and IBM Rational Collaborative Lifecycle Management 5.0 through 5.0.2 and 6.0 through 6.0.5 are vulne
5.4
MEDIUM
CVE-2017-1312
all versions
IBM Rational Quality Manager and IBM Rational Collaborative Lifecycle Management 5.0 through 5.0.2 and 6.0 through 6.0.5 are vulne
5.4
MEDIUM
CVE-2017-1306
all versions
IBM Rational Quality Manager and IBM Rational Collaborative Lifecycle Management 5.0 through 5.0.2 and 6.0 through 6.0.5 are vulne
5.4
MEDIUM
CVE-2017-1299
all versions
IBM Rational Quality Manager and IBM Rational Collaborative Lifecycle Management 5.0 through 5.0.2 and 6.0 through 6.0.5 are vulne
5.4
MEDIUM
CVE-2017-1294
all versions
IBM Rational Quality Manager and IBM Rational Collaborative Lifecycle Management 5.0 through 5.0.2 and 6.0 through 6.0.5 are vulne
5.4
MEDIUM
CVE-2017-1293
all versions
IBM Rational Quality Manager and IBM Rational Collaborative Lifecycle Management 5.0 through 5.0.2 and 6.0 through 6.0.5 are vulne
5.4
MEDIUM
CVE-2017-1281
all versions
IBM Rational Quality Manager and IBM Rational Collaborative Lifecycle Management 5.0 through 5.0.2 and 6.0 through 6.0.5 are vulne
5.4
MEDIUM
CVE-2017-1280
all versions
IBM Rational Quality Manager and IBM Rational Collaborative Lifecycle Management 5.0 through 5.0.2 and 6.0 through 6.0.5 are vulne
5.4
MEDIUM
CVE-2017-1277
all versions
IBM Rational Quality Manager and IBM Rational Collaborative Lifecycle Management 5.0 through 5.0.2 and 6.0 through 6.0.5 are vulne
5.4
MEDIUM
CVE-2017-1275
all versions
IBM Rational Quality Manager and IBM Rational Collaborative Lifecycle Management 5.0 through 5.0.2 and 6.0 through 6.0.5 are vulne
5.4
MEDIUM
CVE-2017-1250
all versions
IBM Rational Quality Manager and IBM Rational Collaborative Lifecycle Management 5.0 through 5.0.2 and 6.0 through 6.0.5 are vulne
5.4
MEDIUM
CVE-2017-1734
> 5.0 and <= 6.0.5
IBM Jazz Team Server affecting the following IBM Rational Products: Collaborative Lifecycle Management (CLM), Rational DOORS Next
4.3
MEDIUM
CVE-2017-1725
> 5.0 and <= 6.0.5
IBM Jazz Team Server affecting the following IBM Rational Products: Collaborative Lifecycle Management (CLM), Rational DOORS Next
4.3
MEDIUM
CVE-2017-1700
> 5.0 and <= 6.0.5
IBM Jazz Team Server affecting the following IBM Rational Products: Collaborative Lifecycle Management (CLM), Rational DOORS Next
6.5
MEDIUM
CVE-2017-1701
>= 5.0 and <= 6.0.5
IBM Team Concert (RTC) 5.0, 5.0.1, 5.0.2, 6.0, 6.0.1, 6.0.2, 6.0.3, 6.0.4, and 6.0.5 stores credentials for users using a weak enc
8.8
HIGH
CVE-2017-1762
>= 4.0 and <= 6.0.5
IBM Jazz Foundation (IBM Rational Collaborative Lifecycle Management 5.0 and 6.0) is vulnerable to cross-site scripting. This vuln
5.4
MEDIUM
CVE-2017-1655
>= 4.0 and <= 6.0.5
IBM Jazz Foundation (IBM Rational Collaborative Lifecycle Management 5.0 and 6.0) is vulnerable to cross-site scripting. This vuln
5.4
MEDIUM
CVE-2017-1629
>= 4.0 and <= 6.0.5
IBM Jazz Foundation (IBM Rational Collaborative Lifecycle Management 5.0 and 6.0) is vulnerable to cross-site scripting. This vuln
5.4
MEDIUM
CVE-2017-1602
>= 4.0.0 and <= 6.0.5
IBM RSA DM (IBM Rational Collaborative Lifecycle Management 5.0 and 6.0) could allow an authenticated user to access settings that
4.3
MEDIUM
CVE-2017-1524
>= 4.0.0 and <= 6.0.5
IBM Jazz Foundation (IBM Rational Collaborative Lifecycle Management 5.0 and 6.0) could allow an authenticated user to obtain sens
4.3
MEDIUM
CVE-2015-7449
>= 4.0.0 and <= 6.0.2
IBM Rational Collaborative Lifecycle Management (CLM) 4.0.x before 4.0.7 iFix10, 5.0.x before 5.0.2 iFix15, 6.0.x before 6.0.1 iFi
3.3
LOW
CVE-2015-7471
>= 3.0.1 and <= 6.0.1
Cross-site scripting (XSS) vulnerability in IBM Rational Collaborative Lifecycle Management (CLM) 3.0.1 before 3.0.1.6 iFix7 Inter
4.8
MEDIUM
CVE-2015-7453
>= 3.0.1 and <= 6.0.1
Cross-site scripting (XSS) vulnerability in IBM Rational Collaborative Lifecycle Management (CLM) 3.0.1 before 3.0.1.6 iFix7 Inter
6.1
MEDIUM
CVE-2015-7440
>= 3.0.1 and <= 6.0.1
IBM Rational Collaborative Lifecycle Management (CLM) 3.0.1 before 3.0.1.6 iFix7 Interim Fix 1, 4.0.x before 4.0.7 iFix10, 5.0.x b
7.8
HIGH
CVE-2017-1653
>= 6.0 and <= 6.0.4
IBM Jazz Foundation (IBM Rational Collaborative Lifecycle Management 6.0.x) is vulnerable to cross-site scripting. This vulnerabil
5.4
MEDIUM
CVE-2016-0219
all versions
XML external entity (XXE) vulnerability in IBM Rational Team Concert 3.0 before 3.0.1.6 iFix7 Interim Fix 1, 4.0 before 4.0.7 iFix
6.5
MEDIUM
CVE-2017-1365
>= 4.0.0 and <= 6.0.4
IBM Team Concert (RTC including IBM Rational Collaborative Lifecycle Management 4.0, 5.0., and 6.0) is vulnerable to cross-site sc
5.4
MEDIUM
CVE-2017-1191
>= 4.0.0 and <= 6.0.4
An undisclosed vulnerability in CLM applications (including IBM Rational Collaborative Lifecycle Management 4.0, 5.0, and 6.0) wit
4.3
MEDIUM
CVE-2017-1507
all versions
IBM Jazz Foundation Products could disclose sensitive information during a scan that could lead to further attacks against the sys
4.3
MEDIUM
CVE-2017-1570
all versions
IBM Jazz Foundation products could allow an authenticated user to obtain sensitive information from stack traces. IBM X-Force ID:
4.3
MEDIUM
CVE-2017-1251
all versions
An undisclosed vulnerability in CLM applications may result in some administrative deployment parameters being shown to an attacke
4.3
MEDIUM
CVE-2017-1240
all versions
IBM Rhapsody DM products could reveal sensitive information in HTTP 500 Internal Server Error responses. IBM X-Force ID: 124359.
4.3
MEDIUM
CVE-2016-6024
all versions
IBM Jazz technology based products might divulge information that might be useful in helping attackers through error messages. IBM
4.3
MEDIUM
CVE-2017-1363
all versions
IBM Team Concert (RTC) is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code i
5.4
MEDIUM
CVE-2017-1295
all versions
IBM RSA DM contains unspecified vulnerability in CLM Applications with potential for information leakage. IBM X-Force ID: 125157.
4.3
MEDIUM
CVE-2017-1241
all versions
An unspecified vulnerability in IBM Jazz Foundation based applications might allow the display of stack trace information to an at
4.3
MEDIUM
CVE-2017-1169
all versions
IBM DOORS next Generation (DNG/RRC) is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary Java
5.4
MEDIUM
CVE-2017-1164
all versions
IBM Jazz Foundation is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in t
5.4
MEDIUM
CVE-2016-9700
all versions
IBM Jazz Foundation could allow an authenticated attacker to obtain sensitive information from error message stack traces. IBM X-F
4.3
MEDIUM
CVE-2016-9746
all versions
IBM Team Concert (RTC) 4.0, 5.0 and 6.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary
5.4
MEDIUM
CVE-2016-9733
all versions
IBM Team Concert (RTC) 4.0, 5.0 and 6.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary
5.4
MEDIUM
CVE-2016-9701
all versions
IBM Team Concert 4.0, 5.0 and 6.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaSc
5.4
MEDIUM
CVE-2016-9747
all versions
IBM RELM 4.0, 5.0 and 6.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript cod
5.4
MEDIUM
CVE-2017-1099
all versions
IBM Jazz Foundation could expose potentially sensitive information to authenticated users through stack trace error conditions. IB
4.3
MEDIUM
CVE-2016-9973
all versions
IBM Jazz Foundation is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in t
5.4
MEDIUM
CVE-2016-9735
all versions
IBM Jazz Foundation could allow an authenticated user to obtain sensitive information from stack traces. IBM X-Force ID: 119781,
4.3
MEDIUM
CVE-2016-9707
all versions
IBM Jazz Foundation is vulnerable to a denial of service, caused by an XML External Entity Injection (XXE) error when processing X
8.1
HIGH
CVE-2016-2981
all versions
An undisclosed vulnerability in the CLM applications in IBM Jazz Team Server may allow unauthorized access to user credentials. IB
6.8
MEDIUM
CVE-2016-8968
all versions
IBM Jazz Foundation is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in t
5.4
MEDIUM
CVE-2016-6032
all versions
IBM Rational Team Concert 4.0, 5.0 and 6.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitra
5.4
MEDIUM
CVE-2016-2866
all versions
An unspecified vulnerability in IBM Jazz Team Server may disclose some deployment information to an authenticated user.
4.3
MEDIUM
CVE-2016-6061
all versions
IBM Jazz Foundation is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in t
5.4
MEDIUM
CVE-2016-6040
all versions
IBM Jazz Foundation could allow an authenticated user to take over a previously logged in user due to session expiration not being
5.0
MEDIUM
CVE-2016-6030
all versions
IBM Jazz Foundation is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in t
5.4
MEDIUM
CVE-2016-6028
all versions
IBM Jazz technology based products might allow an attacker to view work item titles that they do not have privilege to view.
4.3
MEDIUM
CVE-2016-3014
all versions
Cross-site scripting (XSS) vulnerability in IBM Rational Collaborative Lifecycle Management 4.0 before 4.0.7 iFix11 and 5.0 before
5.4
MEDIUM
CVE-2016-2926
all versions
Cross-site scripting (XSS) vulnerability in IBM Rational Collaborative Lifecycle Management 4.0 before 4.0.7 iFix11, 5.0 before 5.
5.4
MEDIUM
CVE-2016-2947
all versions
IBM Rational Collaborative Lifecycle Management 4.0 before 4.0.7 iFix11, 5.0 before 5.0.2 iFix18, and 6.0 before 6.0.2 iFix5; Rati
2.7
LOW
CVE-2016-2864
all versions
Cross-site scripting (XSS) vulnerability in IBM Rational Collaborative Lifecycle Management 3.0.1.6 before iFix8, 4.0 before 4.0.7
5.4
MEDIUM
CVE-2016-0372
all versions
IBM Rational Collaborative Lifecycle Management 3.0.1.6 before iFix8, 4.0 before 4.0.7 iFix11, 5.0 before 5.0.2 iFix18, and 6.0 be
3.7
LOW
CVE-2016-0284
all versions
The XML parser in IBM Rational Collaborative Lifecycle Management 3.0.1.6 before iFix8, 4.0 before 4.0.7 iFix11, 5.0 before 5.0.2
5.4
MEDIUM
CVE-2016-0273
all versions
Cross-site scripting (XSS) vulnerability in IBM Rational Collaborative Lifecycle Management 3.0.1.6 before iFix8, 4.0 before 4.0.7
5.4
MEDIUM
CVE-2016-0326
all versions
IBM Rational Quality Manager (RQM) and Rational Collaborative Lifecycle Management 3.0.1.6 before iFix8, 4.x before 4.0.7 iFix11,
8.8
HIGH
CVE-2016-0331
all versions
Cross-site scripting (XSS) vulnerability in IBM Rational Team Concert 6.0.1 and 6.0.2 before 6.0.2 iFix2 and Rational Collaborativ
5.4
MEDIUM
CVE-2016-2865
all versions
The GIT Integration component in IBM Rational Team Concert (RTC) 5.x before 5.0.2 iFix14 and 6.x before 6.0.1 iFix5 and Rational C
6.5
MEDIUM
CVE-2015-4962
all versions
Jazz Team Server in Jazz Foundation in IBM Rational Collaborative Lifecycle Management (CLM) 3.x and 4.x before 4.0.7 IF9, 5.x bef
3.5
LOW
CVE-2015-4946
all versions
Rational LifeCycle Project Administration in Jazz Team Server in IBM Rational Collaborative Lifecycle Management (CLM) 3.x and 4.x
3.3
LOW
CVE-2015-1971
all versions
Unspecified vulnerability in Jazz Team Server in Jazz Foundation in IBM Rational Collaborative Lifecycle Management (CLM) 3.x and
4.3
MEDIUM
CVE-2015-1928
all versions
Jazz Team Server in Jazz Foundation in IBM Rational Collaborative Lifecycle Management (CLM) 3.x and 4.x before 4.0.7 IF9, 5.x bef
6.8
MEDIUM
CVE-2015-0130
all versions
Cross-site scripting (XSS) vulnerability in Jazz Team Server in Jazz Foundation in IBM Rational Collaborative Lifecycle Management
CVE-2015-0112
all versions
Jazz Team Server in Jazz Foundation in IBM Rational Collaborative Lifecycle Management (CLM) 3.0.1, 4.x before 4.0.7 IF5, and 5.x
CVE-2015-0113
all versions
The Jazz help system in IBM Rational Collaborative Lifecycle Management 4.0 through 5.0.2, Rational Quality Manager 4.0 through 4.
CVE-2014-6131
all versions
IBM Rational Jazz Team Server (JTS), as used in Rational Collaborative Lifecycle Management 3.x and 4.x before 4.0.7 iFix4 and 5.x
CVE-2014-6129
all versions
IBM Rational Jazz Team Server (JTS), as used in Rational Collaborative Lifecycle Management 3.x and 4.x before 4.0.7 iFix4 and 5.x
CVE-2014-0862
all versions
Unspecified vulnerability in Jazz Team Server in IBM Rational Collaborative Lifecycle Management (CLM) 3.x before 3.0.1.6 iFix 2 a
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh · Open-source threat intelligence platform · 100+ authoritative sources · Every fact traces to its origin