CVE-2016-6055: IBM Rational DOORS Next Generation 4.0, 5.0, and 6.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code…

medium5.4CVSS 3.0

AVNACLPRLUIRSCCLILAN

IBM Rational DOORS Next Generation 4.0, 5.0, and 6.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM Reference #: 1995515.

Affected

28 ranges· showing 25

Vendor	Product	Version range	Fixed in
ibm	rational_doors_next_generation	—	—
ibm	rational_doors_next_generation	—	—
ibm	rational_doors_next_generation	—	—
ibm	rational_doors_next_generation	—	—
ibm	rational_doors_next_generation	—	—
ibm	rational_doors_next_generation	—	—
ibm	rational_doors_next_generation	—	—
ibm	rational_requirements_composer	—	—
ibm	rational_requirements_composer	—	—
ibm	rational_requirements_composer	—	—
ibm	rational_requirements_composer	—	—
ibm	rational_requirements_composer	—	—
ibm	rational_requirements_composer	—	—
ibm	rational_requirements_composer	—	—
ibm_corporation	rational_doors_next_generation	—	—
ibm_corporation	rational_doors_next_generation	—	—
ibm_corporation	rational_doors_next_generation	—	—
ibm_corporation	rational_doors_next_generation	—	—
ibm_corporation	rational_doors_next_generation	—	—
ibm_corporation	rational_doors_next_generation	—	—
ibm_corporation	rational_doors_next_generation	—	—
ibm_corporation	rational_doors_next_generation	—	—
ibm_corporation	rational_doors_next_generation	—	—
ibm_corporation	rational_doors_next_generation	—	—
ibm_corporation	rational_doors_next_generation	—	—

CVSS provenance

nvdv3.05.4MEDIUMCVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

osv7.5HIGH