CVE-2017-1128: IBM Rational DOORS Next Generation 4.0, 5.0, and 6.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code…

medium5.4CVSS 3.0

AVNACLPRLUIRSCCLILAN

IBM Rational DOORS Next Generation 4.0, 5.0, and 6.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session.

Affected

31 ranges· showing 25

Vendor	Product	Version range	Fixed in
ibm	rational_doors_next_generation	—	—
ibm	rational_doors_next_generation	—	—
ibm	rational_doors_next_generation	—	—
ibm	rational_doors_next_generation	—	—
ibm	rational_doors_next_generation	—	—
ibm	rational_doors_next_generation	—	—
ibm	rational_doors_next_generation	—	—
ibm	rational_requirements_composer	—	—
ibm	rational_requirements_composer	—	—
ibm	rational_requirements_composer	—	—
ibm	rational_requirements_composer	—	—
ibm	rational_requirements_composer	—	—
ibm	rational_requirements_composer	—	—
ibm	rational_requirements_composer	—	—
ibm	rational_requirements_composer	—	—
ibm	rational_requirements_composer	—	—
ibm	rational_requirements_composer	—	—
ibm	rational_requirements_composer	—	—
ibm_corporation	rational_doors_next_generation	—	—
ibm_corporation	rational_doors_next_generation	—	—
ibm_corporation	rational_doors_next_generation	—	—
ibm_corporation	rational_doors_next_generation	—	—
ibm_corporation	rational_doors_next_generation	—	—
ibm_corporation	rational_doors_next_generation	—	—
ibm_corporation	rational_doors_next_generation	—	—