CVE-2016-0314IBM Jazz Reporting Service vulnerability

3 documents3 sources
Severity
6.5MEDIUMNVD
EPSS
0.1%
top 64.40%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
IBM Jazz Reporting Service
Timeline
PublishedJul 8
Latest updateMay 17

Description

The Report Builder and Data Collection Component (DCC) in IBM Jazz Reporting Service (JRS) 5.x before 5.0.2 ifix016 and 6.x before 6.0.1 ifix005 allow remote authenticated users to conduct clickjacking attacks via unspecified vectors.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:NExploitability: 2.8 | Impact: 3.6

Affected Packages1 packages

NVDibm/jazz_reporting_service5 versions+4

🔴Vulnerability Details

2
GHSA
GHSA-q3fq-h8rr-v5jf: The Report Builder and Data Collection Component (DCC) in IBM Jazz Reporting Service (JRS) 52022-05-17
CVEList
CVE-2016-0314: The Report Builder and Data Collection Component (DCC) in IBM Jazz Reporting Service (JRS) 52016-07-08
CVE-2016-0314 — IBM vulnerability | cvebase