cbcvebase.
CVE-2017-1248
published 2018-07-06

CVE-2017-1248: IBM Quality Manager (RQM) 5.0.x and 6.0 through 6.0.5 are vulnerable to HTML injection. A remote attacker could inject malicious HTML code, which when viewed…

medium6.1CVSS 3.0
AVNACLPRNUIRSCCLILAN
IBM Quality Manager (RQM) 5.0.x and 6.0 through 6.0.5 are vulnerable to HTML injection. A remote attacker could inject malicious HTML code, which when viewed, would be executed in the victim's Web browser within the security context of the hosting site. IBM X-Force ID: 124628.

Affected

10 ranges
VendorProductVersion rangeFixed in
ibmrational_collaborative_lifecycle_management5.0.0 – 6.0.3
ibmrational_quality_manager
ibmrational_quality_manager
ibmrational_quality_manager
ibmrational_quality_manager
ibmrational_quality_manager
ibmrational_quality_manager
ibmrational_quality_manager
ibmrational_quality_manager5.0 – 5.0.2
ibmrational_quality_manager6.0 – 6.0.5