threat
engine
.sh
Back
·
··:··
Home
/
Product
/
ibm rational quality manager
Product
ibm rational quality manager
202 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
Sort
Newest first
Oldest first
Highest CVSS
Lowest CVSS
Min CVSS
Any
4.0+
7.0+ (High)
9.0+ (Critical)
Published since
Reset
CVE-2021-38934
all versions
IBM Engineering Test Management 7.0, 7.0.1, and 7.0.2 is vulnerable to cross-site scripting. This vulnerability allows users to em
5.4
MEDIUM
CVE-2020-5004
all versions
IBM Jazz Foundation products are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript
5.4
MEDIUM
CVE-2020-4974
all versions
IBM Jazz Foundation products are vulnerable to server side request forgery (SSRF). This may allow an authenticated attacker to sen
6.3
MEDIUM
CVE-2021-29670
all versions
IBM Jazz Foundation and IBM Engineering products are vulnerable to cross-site scripting. This vulnerability allows users to embed
5.4
MEDIUM
CVE-2021-29668
all versions
IBM Jazz Foundation and IBM Engineering products are vulnerable to cross-site scripting. This vulnerability allows users to embed
5.4
MEDIUM
CVE-2021-20371
all versions
IBM Jazz Foundation and IBM Engineering products could allow a remote attacker to obtain sensitive information when an error messa
6.5
MEDIUM
CVE-2021-20348
all versions
IBM Jazz Foundation and IBM Engineering products are vulnerable to server-side request forgery (SSRF). This may allow an authentic
5.4
MEDIUM
CVE-2021-20347
all versions
IBM Jazz Foundation and IBM Engineering products are vulnerable to server-side request forgery (SSRF). This may allow an authentic
5.4
MEDIUM
CVE-2021-20346
all versions
IBM Jazz Foundation and IBM Engineering products are vulnerable to server-side request forgery (SSRF). This may allow an authentic
5.4
MEDIUM
CVE-2021-20345
all versions
IBM Jazz Foundation and IBM Engineering products are vulnerable to server-side request forgery (SSRF). This may allow an authentic
5.4
MEDIUM
CVE-2021-20343
all versions
IBM Jazz Foundation and IBM Engineering products are vulnerable to server-side request forgery (SSRF). This may allow an authentic
5.4
MEDIUM
CVE-2021-20338
all versions
IBM Jazz Foundation and IBM Engineering products are vulnerable to cross-site scripting. This vulnerability allows users to embed
5.4
MEDIUM
CVE-2020-5030
all versions
IBM Jazz Foundation and IBM Engineering products are vulnerable to cross-site scripting. This vulnerability allows users to embed
5.4
MEDIUM
CVE-2020-4977
all versions
IBM Engineering Lifecycle Optimization - Publishing is vulnerable to stored cross-site scripting. This vulnerability allows users
5.4
MEDIUM
CVE-2020-4732
all versions
IBM Jazz Foundation and IBM Engineering products could allow an authenticated user to obtain sensitive information due to lack of
6.5
MEDIUM
CVE-2020-4495
all versions
IBM Jazz Foundation and IBM Engineering products could allow a remote attacker to bypass security restrictions, caused by improper
8.8
HIGH
CVE-2021-20519
all versions
IBM Jazz Team Server products are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScrip
5.4
MEDIUM
CVE-2020-4965
all versions
IBM Jazz Team Server products use weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sen
7.5
HIGH
CVE-2020-4964
all versions
IBM Jazz Team Server products contain an undisclosed vulnerability that could allow an authenticated user to present a customized
4.3
MEDIUM
CVE-2020-4920
all versions
IBM Jazz Team Server products are vulnerable to stored cross-site scripting. This vulnerability allows users to embed arbitrary Ja
5.4
MEDIUM
CVE-2021-20351
all versions
IBM Engineering products are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript cod
5.4
MEDIUM
CVE-2021-20350
all versions
IBM Engineering products are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript cod
5.4
MEDIUM
CVE-2021-20340
all versions
IBM Engineering products are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript cod
5.4
MEDIUM
CVE-2020-4975
all versions
IBM Engineering products are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript cod
5.4
MEDIUM
CVE-2020-4866
all versions
IBM Engineering products are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript cod
5.4
MEDIUM
CVE-2020-4863
all versions
IBM Engineering products are vulnerable to stored cross-site scripting. This vulnerability allows users to embed arbitrary JavaScr
5.4
MEDIUM
CVE-2020-4857
all versions
IBM Engineering products are vulnerable to stored cross-site scripting. This vulnerability allows users to embed arbitrary JavaScr
5.4
MEDIUM
CVE-2020-4856
all versions
IBM Engineering products are vulnerable to stored cross-site scripting. This vulnerability allows users to embed arbitrary JavaScr
5.4
MEDIUM
CVE-2021-20357
all versions
IBM Jazz Foundation products is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript
5.4
MEDIUM
CVE-2020-4865
all versions
IBM Jazz Foundation products is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript
5.4
MEDIUM
CVE-2020-4855
all versions
IBM Jazz Foundation products is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript
5.4
MEDIUM
CVE-2020-4547
all versions
IBM Jazz Foundation products could allow a remote attacker to hijack the clicking action of the victim. By persuading a victim to
5.4
MEDIUM
CVE-2020-4524
all versions
IBM Jazz Foundation products is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript
5.4
MEDIUM
CVE-2020-4733
all versions
IBM Jazz Foundation products are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript
5.4
MEDIUM
CVE-2020-4697
all versions
IBM Jazz Foundation products are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript
5.4
MEDIUM
CVE-2020-4691
all versions
IBM Jazz Foundation Products are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript
5.4
MEDIUM
CVE-2020-4544
all versions
IBM Jazz Foundation Products could allow a remote attacker to obtain sensitive information when a detailed technical error message
4.3
MEDIUM
CVE-2020-4487
all versions
IBM Jazz Foundation Products could allow a remote attacker to obtain sensitive information when a detailed technical error message
4.3
MEDIUM
CVE-2020-4546
all versions
IBM Jazz Team Server based Applications are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary
5.4
MEDIUM
CVE-2020-4522
all versions
IBM Jazz Team Server based Applications are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary
5.4
MEDIUM
CVE-2020-4445
all versions
IBM Jazz Team Server based Applications are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary
5.4
MEDIUM
CVE-2019-4748
all versions
IBM Jazz Team Server based Applications are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary
5.4
MEDIUM
CVE-2019-4603
all versions
IBM Quality Manager (RQM) 6.02, 6.06, and 6.0.6.1 could allow an authenticated user to create keywords through the REST API and ha
4.3
MEDIUM
CVE-2019-4602
all versions
IBM Quality Manager (RQM) 6.02, 6.06, and 6.0.6.1 is vulnerable to cross-site scripting. This vulnerability allows users to embed
5.4
MEDIUM
CVE-2019-4601
all versions
IBM Quality Manager (RQM) 6.02, 6.06, and 6.0.6.1 could allow an authenticated user to obtain sensitive information from a stack t
4.3
MEDIUM
CVE-2019-4252
>= 6.0 and <= 6.0.6.1
IBM Rational Collaborative Lifecycle Management 6.0 through 6.0.6.1 could allow a remote attacker to traverse directories on the s
7.5
HIGH
CVE-2019-4250
>= 6.0 and <= 6.0.6.1
IBM Jazz Foundation products (IBM Rational Collaborative Lifecycle Management 6.0 through 6.0.6.1) is vulnerable to cross-site scr
5.4
MEDIUM
CVE-2019-4249
>= 6.0 and <= 6.0.6.1
IBM Rational Collaborative Lifecycle Management 6.0 through 6.0.6.1 is vulnerable to cross-site scripting. This vulnerability allo
5.4
MEDIUM
CVE-2019-4084
>= 6.0 and <= 6.0.6.1
IBM Jazz Foundation products (IBM Rational Collaborative Lifecycle Management 6.0 through 6.0.6.1) could allow an authenticated us
4.3
MEDIUM
CVE-2019-4083
>= 6.0 and <= 6.0.6.1
IBM Jazz Foundation products (IBM Rational Collaborative Lifecycle Management 6.0 through 6.0.6.1) is vulnerable to cross-site scr
5.4
MEDIUM
CVE-2018-1893
>= 6.0 and <= 6.0.6.1
IBM Rational Collaborative Lifecycle Management 6.0 through 6.0.6.1 is vulnerable to cross-site scripting. This vulnerability allo
5.4
MEDIUM
CVE-2018-1892
>= 6.0 and <= 6.0.6.1
IBM Rational Collaborative Lifecycle Management 6.0 through 6.0.6.1 is vulnerable to cross-site scripting. This vulnerability allo
5.4
MEDIUM
CVE-2018-1828
>= 6.0 and <= 6.0.6.1
IBM Rational Collaborative Lifecycle Management 6.0 through 6.0.6.1 is vulnerable to cross-site scripting. This vulnerability allo
5.4
MEDIUM
CVE-2018-1827
>= 6.0 and <= 6.0.6.1
IBM Rational Collaborative Lifecycle Management 6.0 through 6.0.6.1 is vulnerable to cross-site scripting. This vulnerability allo
5.4
MEDIUM
CVE-2018-1826
>= 6.0 and <= 6.0.6.1
IBM Rational Collaborative Lifecycle Management 6.0 through 6.0.6.1 is vulnerable to cross-site scripting. This vulnerability allo
5.4
MEDIUM
CVE-2018-1760
>= 6.0 and <= 6.0.6.1
IBM Rational Collaborative Lifecycle Management 6.0 through 6.0.6.1 is vulnerable to cross-site scripting. This vulnerability allo
5.4
MEDIUM
CVE-2018-1758
>= 6.0 and <= 6.0.6.1
IBM Rational Collaborative Lifecycle Management 6.0 through 6.0.6.1 is vulnerable to cross-site scripting. This vulnerability allo
5.4
MEDIUM
CVE-2018-1734
>= 6.0 and <= 6.0.6.1
IBM Rational Collaborative Lifecycle Management 6.0 through 6.0.6.1 discloses sensitive information in error messages that may be
4.3
MEDIUM
CVE-2018-1952
>= 5.0 and <= 6.0.6
IBM Jazz Foundation (IBM Rational Engineering Lifecycle Manager 5.0 through 6.0.6) is vulnerable to cross-site scripting. This vul
5.4
MEDIUM
CVE-2018-1916
>= 5.0 and <= 6.0.6
IBM Jazz Foundation (IBM Rational Engineering Lifecycle Manager 5.0 through 6.0.6) is vulnerable to cross-site scripting. This vul
5.4
MEDIUM
CVE-2018-1829
>= 5.0 and <= 6.0.6
IBM Rational Quality Manager 5.0 through 6.0.6 is vulnerable to cross-site scripting. This vulnerability allows users to embed arb
5.4
MEDIUM
CVE-2018-1825
>= 5.0 and <= 6.0.6
IBM Rational Quality Manager 5.0 through 6.0.6 is vulnerable to cross-site scripting. This vulnerability allows users to embed arb
5.4
MEDIUM
CVE-2018-1824
>= 5.0 and <= 6.0.6
IBM Rational Quality Manager 5.0 through 6.0.6 is vulnerable to cross-site scripting. This vulnerability allows users to embed arb
5.4
MEDIUM
CVE-2018-1823
>= 5.0 and <= 6.0.6
IBM Rational Quality Manager 5.0 through 6.0.6 is vulnerable to cross-site scripting. This vulnerability allows users to embed arb
5.4
MEDIUM
CVE-2018-1764
>= 5.0 and <= 6.0.6
IBM Rational Quality Manager 5.0 through 6.0.6 is vulnerable to cross-site scripting. This vulnerability allows users to embed arb
5.4
MEDIUM
CVE-2018-1763
>= 5.0 and <= 6.0.6
IBM Rational Quality Manager 5.0 through 6.0.6 is vulnerable to cross-site scripting. This vulnerability allows users to embed arb
5.4
MEDIUM
CVE-2018-1759
>= 5.0 and <= 6.0.6
IBM Rational Quality Manager 5.0 through 6.0.6 is vulnerable to cross-site scripting. This vulnerability allows users to embed arb
5.4
MEDIUM
CVE-2018-1688
>= 5.0 and <= 6.0.6
IBM Jazz Foundation (IBM Rational Collaborative Lifecycle Management 5.0 through 6.0.6) is vulnerable to cross-site scripting. Thi
5.4
MEDIUM
CVE-2018-1762
>= 5.0.0 and <= 5.0.2
IBM Rational Collaborative Lifecycle Management 5.0 through 5.0.2 and 6.0 through 6.0.6 are vulnerable to cross-site scripting. Th
5.4
MEDIUM
CVE-2018-1694
>= 5.0.0 and <= 5.0.2
IBM Jazz applications (IBM Rational Collaborative Lifecycle Management 5.0 through 5.02 and 6.0 through 6.0.6, IBM Rational DOORS
5.9
MEDIUM
CVE-2018-1606
>= 5.0.0 and <= 5.0.2
IBM Jazz based applications (IBM Rational Collaborative Lifecycle Management 5.0 through 5.02 and 6.0 through 6.0.6, IBM Rational
4.3
MEDIUM
CVE-2017-1609
>= 5.0 and <= 5.0.2
IBM Quality Manager (RQM) 5.0 through 5.0.2 and 6.0 through 6.0.6 are vulnerable to cross-site scripting. This vulnerability allow
5.4
MEDIUM
CVE-2018-1604
>= 5.0 and <= 5.0.2
IBM Rational Quality Manager (RQM) 5.0 through 5.02 and 6.0 through 6.0.6 are vulnerable to cross-site scripting. This vulnerabili
5.4
MEDIUM
CVE-2018-1603
>= 5.0 and <= 5.0.2
IBM Rational Quality Manager (RQM) 5.0 through 5.02 and 6.0 through 6.0.6 are vulnerable to cross-site scripting. This vulnerabili
5.4
MEDIUM
CVE-2018-1602
>= 5.0 and <= 5.0.2
IBM Rational Quality Manager (RQM) 5.0 through 5.02 and 6.0 through 6.0.6 are vulnerable to cross-site scripting. This vulnerabili
5.4
MEDIUM
CVE-2018-1692
>= 5.0 and <= 5.0.2
IBM Rational Quality Manager (RQM) 5.0 through 5.02 and 6.0 through 6.0.6 are vulnerable to cross-site scripting. This vulnerabili
5.4
MEDIUM
CVE-2018-1691
>= 5.0 and <= 5.0.2
IBM Rational Quality Manager (RQM) 5.0 through 5.02 and 6.0 through 6.0.6 are vulnerable to cross-site scripting. This vulnerabili
5.4
MEDIUM
CVE-2018-1605
>= 5.0 and <= 5.0.2
IBM Rational Quality Manager (RQM) 5.0 through 5.02 and 6.0 through 6.0.6 are vulnerable to cross-site scripting. This vulnerabili
5.4
MEDIUM
CVE-2018-1601
>= 5.0 and <= 5.0.2
IBM Rational Quality Manager (RQM) 5.0 through 5.02 and 6.0 through 6.0.6 are vulnerable to cross-site scripting. This vulnerabili
5.4
MEDIUM
CVE-2018-1558
>= 5.0 and <= 5.0.2
IBM Rational Collaborative Lifecycle Management 5.0 through 5.02 and 6.0 through 6.0.6 are vulnerable to cross-site scripting. Thi
5.4
MEDIUM
CVE-2018-1557
>= 5.0 and <= 5.0.2
IBM Rational Quality Manager (RQM) 5.0 through 5.02 and 6.0 through 6.0.6 are vulnerable to cross-site scripting. This vulnerabili
5.4
MEDIUM
CVE-2018-1522
>= 5.0 and <= 5.0.2
IBM Rational Quality Manager (RQM) 5.0 through 5.02 and 6.0 through 6.0.6 are vulnerable to cross-site scripting. This vulnerabili
5.4
MEDIUM
CVE-2018-1440
>= 5.0 and <= 5.0.2
IBM Rational Quality Manager (RQM) 5.0 through 5.02 and 6.0 through 6.0.6 are vulnerable to cross-site scripting. This vulnerabili
5.4
MEDIUM
CVE-2018-1439
>= 5.0 and <= 5.0.2
IBM Rational Quality Manager (RQM) 5.0 through 5.02 and 6.0 through 6.0.6 are vulnerable to cross-site scripting. This vulnerabili
5.4
MEDIUM
CVE-2018-1405
>= 5.0 and <= 5.0.2
IBM Rational Quality Manager (RQM) 5.0 through 5.02 and 6.0 through 6.0.6 are vulnerable to cross-site scripting. This vulnerabili
5.4
MEDIUM
CVE-2018-1404
>= 5.0 and <= 5.0.2
IBM Rational Quality Manager (RQM) 5.0 through 5.02 and 6.0 through 6.0.6 are vulnerable to cross-site scripting. This vulnerabili
5.4
MEDIUM
CVE-2018-1403
>= 5.0 and <= 5.0.2
IBM Rational Quality Manager (RQM) 5.0 through 5.02 and 6.0 through 6.0.6 are vulnerable to cross-site scripting. This vulnerabili
5.4
MEDIUM
CVE-2018-1395
>= 5.0 and <= 5.0.2
IBM Rational Quality Manager (RQM) 5.0 through 5.02 and 6.0 through 6.0.6 are vulnerable to cross-site scripting. This vulnerabili
5.4
MEDIUM
CVE-2017-1649
>= 5.0 and <= 5.0.2
IBM Rational Quality Manager (RQM) 5.0 through 5.02 and 6.0 through 6.0.6 are vulnerable to cross-site scripting. This vulnerabili
5.4
MEDIUM
CVE-2018-1394
>= 5.0.0 and <= 5.0.2
Multiple IBM Rational products are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScri
5.4
MEDIUM
CVE-2017-1753
>= 5.0.0 and <= 5.0.2
Multiple IBM Rational products are vulnerable to HTML injection. A remote attacker could inject malicious HTML code, which when vi
5.4
MEDIUM
CVE-2018-1549
>= 5.0 and <= 5.0.2
IBM Rational Quality Manager 5.0 through 5.0.2 and 6.0 through 6.0.5 are vulnerable to HTTP response splitting attacks. A remote a
5.4
MEDIUM
CVE-2018-1523
>= 5.0 and <= 5.0.2
IBM Rational Quality Manager 5.0 through 5.0.2 and 6.0 through 6.0.5 are vulnerable to cross-site scripting. This vulnerability al
5.4
MEDIUM
CVE-2018-1492
>= 5.0 and <= 5.0.2
IBM Jazz Foundation products could allow a user with physical access to the system to log in as another user due to the server's f
4.3
MEDIUM
CVE-2018-1423
>= 5.0 and <= 5.0.2
IBM Jazz Foundation products could disclose sensitive information to an authenticated attacker that could be used in further attac
4.3
MEDIUM
CVE-2018-1396
>= 5.0 and <= 5.0.2
IBM Rational Quality Manager 5.0 through 5.0.2 and 6.0 through 6.0.5 are vulnerable to cross-site scripting. This vulnerability al
5.4
MEDIUM
CVE-2017-1793
>= 5.0 and <= 5.0.2
IBM Rational Quality Manager 5.0 through 5.0.2 and 6.0 through 6.0.5 are vulnerable to cross-site scripting. This vulnerability al
5.4
MEDIUM
CVE-2017-1792
>= 5.0 and <= 5.0.2
IBM Rational Quality Manager 5.0 through 5.0.2 and 6.0 through 6.0.5 are vulnerable to cross-site scripting. This vulnerability al
5.4
MEDIUM
CVE-2017-1791
>= 5.0 and <= 5.0.2
IBM Rational Quality Manager 5.0 through 5.0.2 and 6.0 through 6.0.5 are vulnerable to cross-site scripting. This vulnerability al
5.4
MEDIUM
CVE-2017-1738
>= 5.0 and <= 5.0.2
IBM Rational Quality Manager 5.0 through 5.0.2 and 6.0 through 6.0.5 contains an undisclosed vulnerability that would allow an aut
6.3
MEDIUM
CVE-2017-1729
>= 5.0 and <= 5.0.2
IBM Rational Quality Manager 5.0 through 5.0.2 and 6.0 through 6.0.5 are vulnerable to cross-site scripting. This vulnerability al
5.4
MEDIUM
CVE-2017-1559
>= 6.0.0 and <= 6.0.5
Multiple IBM Rational products could disclose sensitive information by an attacker that intercepts vulnerable requests. IBM X-Forc
3.1
LOW
CVE-2017-1509
>= 6.0.0 and <= 6.0.5
IBM Jazz Foundation products could allow an authenticated user to obtain sensitive information from a stack trace that could be us
4.3
MEDIUM
CVE-2017-1488
>= 6.0.0 and <= 6.0.5
An undisclosed vulnerability in Jazz common products exists with potential for information disclosure. IBM X-Force ID: 128627.
3.7
LOW
CVE-2017-1329
>= 5.0 and <= 5.0.2
IBM Quality Manager (RQM) 5.0.x and 6.0 through 6.0.5 are vulnerable to HTML injection. A remote attacker could inject malicious H
5.4
MEDIUM
CVE-2017-1248
>= 5.0 and <= 5.0.2
IBM Quality Manager (RQM) 5.0.x and 6.0 through 6.0.5 are vulnerable to HTML injection. A remote attacker could inject malicious H
5.4
MEDIUM
CVE-2017-1242
>= 5.0 and <= 5.0.2
IBM Quality Manager (RQM) 5.0.x and 6.0 through 6.0.5 are vulnerable to HTML injection. A remote attacker could inject malicious H
5.4
MEDIUM
CVE-2017-1239
>= 5.0 and <= 5.0.2
IBM Quality Manager (RQM) 5.0.x and 6.0 through 6.0.5 could reveal sensitive information in HTTP 500 Internal Server Error respons
4.3
MEDIUM
CVE-2017-1238
>= 5.0 and <= 5.0.2
IBM Quality Manager (RQM) 5.0.x and 6.0 through 6.0.5 are vulnerable to cross-site scripting. This vulnerability allows users to e
5.4
MEDIUM
CVE-2017-1237
>= 6.0.0 and <= 6.0.5
IBM Jazz based applications are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript
5.4
MEDIUM
CVE-2017-1717
all versions
IBM Rational Quality Manager and IBM Rational Collaborative Lifecycle Management 5.0 through 5.0.2 and 6.0 through 6.0.5 are vulne
5.4
MEDIUM
CVE-2017-1715
all versions
IBM Rational Quality Manager and IBM Rational Collaborative Lifecycle Management 5.0 through 5.0.2 and 6.0 through 6.0.5 are vulne
5.4
MEDIUM
CVE-2017-1691
all versions
IBM Rational Quality Manager and IBM Rational Collaborative Lifecycle Management 5.0 through 5.0.2 and 6.0 through 6.0.5 are vulne
5.4
MEDIUM
CVE-2017-1690
all versions
IBM Rational Quality Manager and IBM Rational Collaborative Lifecycle Management 5.0 through 5.0.2 and 6.0 through 6.0.5 are vulne
5.4
MEDIUM
CVE-2017-1652
all versions
IBM Rational Quality Manager and IBM Rational Collaborative Lifecycle Management 5.0 through 5.0.2 and 6.0 through 6.0.5 are vulne
5.4
MEDIUM
CVE-2017-1651
all versions
IBM Rational Quality Manager and IBM Rational Collaborative Lifecycle Management 5.0 through 5.0.2 and 6.0 through 6.0.5 are vulne
5.4
MEDIUM
CVE-2017-1621
all versions
IBM Rational Quality Manager and IBM Rational Collaborative Lifecycle Management 5.0 through 5.0.2 and 6.0 through 6.0.5 are vulne
5.4
MEDIUM
CVE-2017-1608
all versions
IBM Rational Quality Manager and IBM Rational Collaborative Lifecycle Management 5.0 through 5.0.2 and 6.0 through 6.0.5 are vulne
5.4
MEDIUM
CVE-2017-1592
all versions
IBM Rational Quality Manager and IBM Rational Collaborative Lifecycle Management 5.0 through 5.0.2 and 6.0 through 6.0.5 are vulne
5.4
MEDIUM
CVE-2017-1568
all versions
IBM Rational Quality Manager and IBM Rational Collaborative Lifecycle Management 5.0 through 5.0.2 and 6.0 through 6.0.5 are vulne
5.4
MEDIUM
CVE-2017-1565
all versions
IBM Rational Quality Manager and IBM Rational Collaborative Lifecycle Management 5.0 through 5.0.2 and 6.0 through 6.0.5 are vulne
5.4
MEDIUM
CVE-2017-1564
all versions
IBM Rational Quality Manager and IBM Rational Collaborative Lifecycle Management 5.0 through 5.0.2 and 6.0 through 6.0.5 are vulne
5.4
MEDIUM
CVE-2017-1562
all versions
IBM Rational Quality Manager and IBM Rational Collaborative Lifecycle Management 5.0 through 5.0.2 and 6.0 through 6.0.5 are vulne
5.4
MEDIUM
CVE-2017-1561
all versions
IBM Rational Quality Manager and IBM Rational Collaborative Lifecycle Management 5.0 through 5.0.2 and 6.0 through 6.0.5 are vulne
5.4
MEDIUM
CVE-2017-1317
all versions
IBM Rational Quality Manager and IBM Rational Collaborative Lifecycle Management 5.0 through 5.0.2 and 6.0 through 6.0.5 are vulne
5.4
MEDIUM
CVE-2017-1316
all versions
IBM Rational Quality Manager and IBM Rational Collaborative Lifecycle Management 5.0 through 5.0.2 and 6.0 through 6.0.5 are vulne
5.4
MEDIUM
CVE-2017-1315
all versions
IBM Rational Quality Manager and IBM Rational Collaborative Lifecycle Management 5.0 through 5.0.2 and 6.0 through 6.0.5 are vulne
5.4
MEDIUM
CVE-2017-1314
all versions
IBM Rational Quality Manager and IBM Rational Collaborative Lifecycle Management 5.0 through 5.0.2 and 6.0 through 6.0.5 are vulne
5.4
MEDIUM
CVE-2017-1313
all versions
IBM Rational Quality Manager and IBM Rational Collaborative Lifecycle Management 5.0 through 5.0.2 and 6.0 through 6.0.5 are vulne
5.4
MEDIUM
CVE-2017-1312
all versions
IBM Rational Quality Manager and IBM Rational Collaborative Lifecycle Management 5.0 through 5.0.2 and 6.0 through 6.0.5 are vulne
5.4
MEDIUM
CVE-2017-1306
all versions
IBM Rational Quality Manager and IBM Rational Collaborative Lifecycle Management 5.0 through 5.0.2 and 6.0 through 6.0.5 are vulne
5.4
MEDIUM
CVE-2017-1299
all versions
IBM Rational Quality Manager and IBM Rational Collaborative Lifecycle Management 5.0 through 5.0.2 and 6.0 through 6.0.5 are vulne
5.4
MEDIUM
CVE-2017-1294
all versions
IBM Rational Quality Manager and IBM Rational Collaborative Lifecycle Management 5.0 through 5.0.2 and 6.0 through 6.0.5 are vulne
5.4
MEDIUM
CVE-2017-1293
all versions
IBM Rational Quality Manager and IBM Rational Collaborative Lifecycle Management 5.0 through 5.0.2 and 6.0 through 6.0.5 are vulne
5.4
MEDIUM
CVE-2017-1281
all versions
IBM Rational Quality Manager and IBM Rational Collaborative Lifecycle Management 5.0 through 5.0.2 and 6.0 through 6.0.5 are vulne
5.4
MEDIUM
CVE-2017-1280
all versions
IBM Rational Quality Manager and IBM Rational Collaborative Lifecycle Management 5.0 through 5.0.2 and 6.0 through 6.0.5 are vulne
5.4
MEDIUM
CVE-2017-1277
all versions
IBM Rational Quality Manager and IBM Rational Collaborative Lifecycle Management 5.0 through 5.0.2 and 6.0 through 6.0.5 are vulne
5.4
MEDIUM
CVE-2017-1275
all versions
IBM Rational Quality Manager and IBM Rational Collaborative Lifecycle Management 5.0 through 5.0.2 and 6.0 through 6.0.5 are vulne
5.4
MEDIUM
CVE-2017-1250
all versions
IBM Rational Quality Manager and IBM Rational Collaborative Lifecycle Management 5.0 through 5.0.2 and 6.0 through 6.0.5 are vulne
5.4
MEDIUM
CVE-2017-1734
>= 5.0 and <= 5.0.2
IBM Jazz Team Server affecting the following IBM Rational Products: Collaborative Lifecycle Management (CLM), Rational DOORS Next
4.3
MEDIUM
CVE-2017-1725
>= 5.0 and <= 5.0.2
IBM Jazz Team Server affecting the following IBM Rational Products: Collaborative Lifecycle Management (CLM), Rational DOORS Next
4.3
MEDIUM
CVE-2017-1700
>= 5.0 and <= 5.0.2
IBM Jazz Team Server affecting the following IBM Rational Products: Collaborative Lifecycle Management (CLM), Rational DOORS Next
6.5
MEDIUM
CVE-2017-1762
>= 4.0 and <= 4.0.7
IBM Jazz Foundation (IBM Rational Collaborative Lifecycle Management 5.0 and 6.0) is vulnerable to cross-site scripting. This vuln
5.4
MEDIUM
CVE-2017-1655
>= 4.0 and <= 4.0.7
IBM Jazz Foundation (IBM Rational Collaborative Lifecycle Management 5.0 and 6.0) is vulnerable to cross-site scripting. This vuln
5.4
MEDIUM
CVE-2017-1629
>= 4.0 and <= 4.0.7
IBM Jazz Foundation (IBM Rational Collaborative Lifecycle Management 5.0 and 6.0) is vulnerable to cross-site scripting. This vuln
5.4
MEDIUM
CVE-2017-1602
>= 4.0.0 and <= 4.0.7
IBM RSA DM (IBM Rational Collaborative Lifecycle Management 5.0 and 6.0) could allow an authenticated user to access settings that
4.3
MEDIUM
CVE-2017-1524
>= 4.0.0 and <= 4.0.7
IBM Jazz Foundation (IBM Rational Collaborative Lifecycle Management 5.0 and 6.0) could allow an authenticated user to obtain sens
4.3
MEDIUM
CVE-2015-7449
>= 4.0.0 and <= 4.0.7
IBM Rational Collaborative Lifecycle Management (CLM) 4.0.x before 4.0.7 iFix10, 5.0.x before 5.0.2 iFix15, 6.0.x before 6.0.1 iFi
3.3
LOW
CVE-2015-7471
>= 3.0 and <= 3.0.1.6
Cross-site scripting (XSS) vulnerability in IBM Rational Collaborative Lifecycle Management (CLM) 3.0.1 before 3.0.1.6 iFix7 Inter
4.8
MEDIUM
CVE-2015-7453
>= 3.0 and <= 3.0.1.6
Cross-site scripting (XSS) vulnerability in IBM Rational Collaborative Lifecycle Management (CLM) 3.0.1 before 3.0.1.6 iFix7 Inter
6.1
MEDIUM
CVE-2015-7440
>= 3.0 and <= 3.0.1.6
IBM Rational Collaborative Lifecycle Management (CLM) 3.0.1 before 3.0.1.6 iFix7 Interim Fix 1, 4.0.x before 4.0.7 iFix10, 5.0.x b
7.8
HIGH
CVE-2017-1653
>= 6.0 and <= 6.0.4
IBM Jazz Foundation (IBM Rational Collaborative Lifecycle Management 6.0.x) is vulnerable to cross-site scripting. This vulnerabil
5.4
MEDIUM
CVE-2016-0219
all versions
XML external entity (XXE) vulnerability in IBM Rational Team Concert 3.0 before 3.0.1.6 iFix7 Interim Fix 1, 4.0 before 4.0.7 iFix
6.5
MEDIUM
CVE-2017-1365
>= 4.0.0 and <= 4.0.7
IBM Team Concert (RTC including IBM Rational Collaborative Lifecycle Management 4.0, 5.0., and 6.0) is vulnerable to cross-site sc
5.4
MEDIUM
CVE-2017-1191
>= 4.0.0 and <= 4.0.7
An undisclosed vulnerability in CLM applications (including IBM Rational Collaborative Lifecycle Management 4.0, 5.0, and 6.0) wit
4.3
MEDIUM
CVE-2017-1507
all versions
IBM Jazz Foundation Products could disclose sensitive information during a scan that could lead to further attacks against the sys
4.3
MEDIUM
CVE-2017-1570
all versions
IBM Jazz Foundation products could allow an authenticated user to obtain sensitive information from stack traces. IBM X-Force ID:
4.3
MEDIUM
CVE-2017-1251
all versions
An undisclosed vulnerability in CLM applications may result in some administrative deployment parameters being shown to an attacke
4.3
MEDIUM
CVE-2017-1240
all versions
IBM Rhapsody DM products could reveal sensitive information in HTTP 500 Internal Server Error responses. IBM X-Force ID: 124359.
4.3
MEDIUM
CVE-2016-6024
all versions
IBM Jazz technology based products might divulge information that might be useful in helping attackers through error messages. IBM
4.3
MEDIUM
CVE-2016-9700
all versions
IBM Jazz Foundation could allow an authenticated attacker to obtain sensitive information from error message stack traces. IBM X-F
4.3
MEDIUM
CVE-2017-1104
all versions
IBM Quality Manager (RQM) 4.0, 5.0, and 6.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitr
5.4
MEDIUM
CVE-2017-1102
all versions
IBM Quality Manager (RQM) 4.0, 5.0, and 6.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitr
5.4
MEDIUM
CVE-2017-1101
all versions
IBM Quality Manager (RQM) 4.0, 5.0, and 6.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitr
5.4
MEDIUM
CVE-2017-1100
all versions
IBM Quality Manager (RQM) 4.0, 5.0, and 6.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitr
5.4
MEDIUM
CVE-2017-1099
all versions
IBM Jazz Foundation could expose potentially sensitive information to authenticated users through stack trace error conditions. IB
4.3
MEDIUM
CVE-2016-9973
all versions
IBM Jazz Foundation is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in t
5.4
MEDIUM
CVE-2016-9735
all versions
IBM Jazz Foundation could allow an authenticated user to obtain sensitive information from stack traces. IBM X-Force ID: 119781,
4.3
MEDIUM
CVE-2017-1103
all versions
IBM Team Concert (RTC) is vulnerable to a denial of service, caused by an XML External Entity Injection (XXE) error when processin
8.1
HIGH
CVE-2016-6037
all versions
IBM Rational Team Concert (RTC) is vulnerable to HTML injection. A remote attacker with project administrator privileges could sen
4.8
MEDIUM
CVE-2016-6035
all versions
IBM Rational Quality Manager is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript
5.4
MEDIUM
CVE-2016-9707
all versions
IBM Jazz Foundation is vulnerable to a denial of service, caused by an XML External Entity Injection (XXE) error when processing X
8.1
HIGH
CVE-2016-6036
all versions
IBM Rational Quality Manager (RQM) 4.0, 5.0, and 6.0 are vulnerable to cross-site scripting. This vulnerability allows users to em
5.4
MEDIUM
CVE-2016-6031
all versions
IBM Rational Quality Manager 4.0, 5.0, and 6.0 are vulnerable to cross-site scripting. This vulnerability allows users to embed ar
5.4
MEDIUM
CVE-2016-6022
all versions
IBM Quality Manager (RQM) 4.0, 5.0, and 6.0 are vulnerable to cross-site scripting. This vulnerability allows users to embed arbit
5.4
MEDIUM
CVE-2016-2987
all versions
An undisclosed vulnerability in CLM applications may result in some administrative deployment parameters being shown to an attacke
4.3
MEDIUM
CVE-2016-3014
all versions
Cross-site scripting (XSS) vulnerability in IBM Rational Collaborative Lifecycle Management 4.0 before 4.0.7 iFix11 and 5.0 before
5.4
MEDIUM
CVE-2016-2926
all versions
Cross-site scripting (XSS) vulnerability in IBM Rational Collaborative Lifecycle Management 4.0 before 4.0.7 iFix11, 5.0 before 5.
5.4
MEDIUM
CVE-2016-2986
all versions
Cross-site scripting (XSS) vulnerability in IBM Rational Collaborative Lifecycle Management 6.x before 6.0.1 iFix6, Rational Quali
5.4
MEDIUM
CVE-2016-2947
all versions
IBM Rational Collaborative Lifecycle Management 4.0 before 4.0.7 iFix11, 5.0 before 5.0.2 iFix18, and 6.0 before 6.0.2 iFix5; Rati
2.7
LOW
CVE-2016-2864
all versions
Cross-site scripting (XSS) vulnerability in IBM Rational Collaborative Lifecycle Management 3.0.1.6 before iFix8, 4.0 before 4.0.7
5.4
MEDIUM
CVE-2016-0372
all versions
IBM Rational Collaborative Lifecycle Management 3.0.1.6 before iFix8, 4.0 before 4.0.7 iFix11, 5.0 before 5.0.2 iFix18, and 6.0 be
3.7
LOW
CVE-2016-0284
all versions
The XML parser in IBM Rational Collaborative Lifecycle Management 3.0.1.6 before iFix8, 4.0 before 4.0.7 iFix11, 5.0 before 5.0.2
5.4
MEDIUM
CVE-2016-0273
all versions
Cross-site scripting (XSS) vulnerability in IBM Rational Collaborative Lifecycle Management 3.0.1.6 before iFix8, 4.0 before 4.0.7
5.4
MEDIUM
CVE-2016-0326
all versions
IBM Rational Quality Manager (RQM) and Rational Collaborative Lifecycle Management 3.0.1.6 before iFix8, 4.x before 4.0.7 iFix11,
8.8
HIGH
CVE-2015-4962
all versions
Jazz Team Server in Jazz Foundation in IBM Rational Collaborative Lifecycle Management (CLM) 3.x and 4.x before 4.0.7 IF9, 5.x bef
3.5
LOW
CVE-2015-4946
all versions
Rational LifeCycle Project Administration in Jazz Team Server in IBM Rational Collaborative Lifecycle Management (CLM) 3.x and 4.x
3.3
LOW
CVE-2015-1971
all versions
Unspecified vulnerability in Jazz Team Server in Jazz Foundation in IBM Rational Collaborative Lifecycle Management (CLM) 3.x and
4.3
MEDIUM
CVE-2015-1928
all versions
Jazz Team Server in Jazz Foundation in IBM Rational Collaborative Lifecycle Management (CLM) 3.x and 4.x before 4.0.7 IF9, 5.x bef
6.8
MEDIUM
CVE-2015-0130
all versions
Cross-site scripting (XSS) vulnerability in Jazz Team Server in Jazz Foundation in IBM Rational Collaborative Lifecycle Management
CVE-2015-0112
all versions
Jazz Team Server in Jazz Foundation in IBM Rational Collaborative Lifecycle Management (CLM) 3.0.1, 4.x before 4.0.7 IF5, and 5.x
CVE-2015-0113
all versions
The Jazz help system in IBM Rational Collaborative Lifecycle Management 4.0 through 5.0.2, Rational Quality Manager 4.0 through 4.
CVE-2015-0128
all versions
Cross-site scripting (XSS) vulnerability in IBM Rational Quality Manager 2.x and 3.x before 3.0.1.6 iFix4, 4.x before 4.0.7 iFix3,
CVE-2015-0124
all versions
Cross-site scripting (XSS) vulnerability in IBM Rational Quality Manager 2.x and 3.x before 3.0.1.6 iFix4, 4.x before 4.0.7 iFix3,
CVE-2014-6131
all versions
IBM Rational Jazz Team Server (JTS), as used in Rational Collaborative Lifecycle Management 3.x and 4.x before 4.0.7 iFix4 and 5.x
CVE-2014-6129
all versions
IBM Rational Jazz Team Server (JTS), as used in Rational Collaborative Lifecycle Management 3.x and 4.x before 4.0.7 iFix4 and 5.x
CVE-2015-0129
all versions
Cross-site scripting (XSS) vulnerability in IBM Rational Quality Manager (RQM) 4.x before 4.0.7 iFix3 and 5.x before 5.0.2 allows
CVE-2014-6144
all versions
Cross-site scripting (XSS) vulnerability in IBM Rational Quality Manager (RQM) 2.x and 3.x before 3.0.1.6 iFix 5, 4.x before 4.0.7
CVE-2014-4801
all versions
Cross-site scripting (XSS) vulnerability in IBM Rational Quality Manager 2.x through 2.0.1.1, 3.x before 3.0.1.6 iFix 4, 4.x befor
CVE-2014-3092
all versions
IBM Jazz Team Server, as used in Rational Collaborative Lifecycle Management; Rational Quality Manager 3.x before 3.0.1.6 iFix 3,
CVE-2013-5404
all versions
Cross-site scripting (XSS) vulnerability in the search implementation in IBM Rational Quality Manager (RQM) 2.0 through 2.0.1.1, 3
CVE-2010-4094
all versions
The Tomcat server in IBM Rational Quality Manager and Rational Test Lab Manager has a default password for the ADMIN account, whic
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh · Open-source threat intelligence platform · 100+ authoritative sources · Every fact traces to its origin