CVE-2016-6037
published 2017-05-10CVE-2016-6037: IBM Rational Team Concert (RTC) is vulnerable to HTML injection. A remote attacker with project administrator privileges could send a project that contains…
medium4.8CVSS 3.0
AVNACLPRHUIRSCCLILAN
IBM Rational Team Concert (RTC) is vulnerable to HTML injection. A remote attacker with project administrator privileges could send a project that contains malicious HTML code, which when the project is viewed, would be executed in the victim's Web browser within the security context of the hosting site. IBM X-Force ID: 116918.
Affected
30 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| ibm | rational_quality_manager | — | — |
| ibm | rational_quality_manager | — | — |
| ibm | rational_quality_manager | — | — |
| ibm | rational_quality_manager | — | — |
| ibm | rational_quality_manager | — | — |
| ibm | rational_quality_manager | — | — |
| ibm | rational_quality_manager | — | — |
| ibm | rational_quality_manager | — | — |
| ibm | rational_quality_manager | — | — |
| ibm | rational_quality_manager | — | — |
| ibm | rational_quality_manager | — | — |
| ibm | rational_quality_manager | — | — |
| ibm | rational_quality_manager | — | — |
| ibm | rational_quality_manager | — | — |
| ibm | rational_team_concert | — | — |
| ibm | rational_team_concert | — | — |
| ibm | rational_team_concert | — | — |
| ibm | rational_team_concert | — | — |
| ibm | rational_team_concert | — | — |
| ibm | rational_team_concert | — | — |
| ibm | rational_team_concert | — | — |
| ibm | rational_team_concert | — | — |
| ibm | rational_team_concert | — | — |
| ibm | rational_team_concert | — | — |
| ibm | rational_team_concert | — | — |