cbcvebase.
CVE-2020-5031
published 2021-07-19

CVE-2020-5031: IBM Jazz Foundation and IBM Engineering products are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in…

medium5.4CVSS 3.1
AVNACLPRLUIRSCCLILAN
IBM Jazz Foundation and IBM Engineering products are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 193738.

Affected

17 ranges
VendorProductVersion rangeFixed in
ibmengineering_lifecycle_optimization
ibmengineering_lifecycle_optimization
ibmengineering_lifecycle_optimization
ibmengineering_workflow_management
ibmengineering_workflow_management
ibmengineering_workflow_management
ibmengineering_workflow_management
ibmrational_collaborative_lifecycle_management
ibmrational_collaborative_lifecycle_management
ibmrational_doors_next_generation
ibmrational_doors_next_generation
ibmrational_doors_next_generation
ibmrational_engineering_lifecycle_manager
ibmrational_engineering_lifecycle_manager
ibmrational_engineering_lifecycle_manager
ibmrational_team_concert
ibmrational_team_concert