Ibm Rational Doors Next Generation vulnerabilities
164 known vulnerabilities affecting ibm/rational_doors_next_generation.
Total CVEs
164
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH8MEDIUM146LOW10
Vulnerabilities
Page 4 of 9
CVE-2018-1734MEDIUMCVSS 4.3≥ 6.0, ≤ 6.0.6.12019-06-27
CVE-2018-1734 [MEDIUM] CWE-200 CVE-2018-1734: IBM Rational Collaborative Lifecycle Management 6.0 through 6.0.6.1 discloses sensitive information
IBM Rational Collaborative Lifecycle Management 6.0 through 6.0.6.1 discloses sensitive information in error messages that may be used by a malicious user to orchestrate further attacks. IBM X-Force ID: 147838.
nvd
CVE-2019-4250MEDIUMCVSS 5.4≥ 6.0, ≤ 6.0.6.12019-06-27
CVE-2019-4250 [MEDIUM] CWE-79 CVE-2019-4250: IBM Jazz Foundation products (IBM Rational Collaborative Lifecycle Management 6.0 through 6.0.6.1) i
IBM Jazz Foundation products (IBM Rational Collaborative Lifecycle Management 6.0 through 6.0.6.1) is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 159648
nvd
CVE-2018-1893MEDIUMCVSS 5.4≥ 6.0, ≤ 6.0.6.12019-06-27
CVE-2018-1893 [MEDIUM] CWE-79 CVE-2018-1893: IBM Rational Collaborative Lifecycle Management 6.0 through 6.0.6.1 is vulnerable to cross-site scri
IBM Rational Collaborative Lifecycle Management 6.0 through 6.0.6.1 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 152157.
nvd
CVE-2018-1827MEDIUMCVSS 5.4≥ 6.0, ≤ 6.0.6.12019-06-27
CVE-2018-1827 [MEDIUM] CWE-79 CVE-2018-1827: IBM Rational Collaborative Lifecycle Management 6.0 through 6.0.6.1 is vulnerable to cross-site scri
IBM Rational Collaborative Lifecycle Management 6.0 through 6.0.6.1 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 150430.
nvd
CVE-2018-1758MEDIUMCVSS 5.4≥ 6.0, ≤ 6.0.6.12019-06-27
CVE-2018-1758 [MEDIUM] CWE-79 CVE-2018-1758: IBM Rational Collaborative Lifecycle Management 6.0 through 6.0.6.1 is vulnerable to cross-site scri
IBM Rational Collaborative Lifecycle Management 6.0 through 6.0.6.1 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 148605.
nvd
CVE-2018-1760MEDIUMCVSS 5.4≥ 6.0, ≤ 6.0.6.12019-06-27
CVE-2018-1760 [MEDIUM] CWE-79 CVE-2018-1760: IBM Rational Collaborative Lifecycle Management 6.0 through 6.0.6.1 is vulnerable to cross-site scri
IBM Rational Collaborative Lifecycle Management 6.0 through 6.0.6.1 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 148614.
nvd
CVE-2018-1828MEDIUMCVSS 5.4≥ 6.0, ≤ 6.0.6.12019-06-27
CVE-2018-1828 [MEDIUM] CWE-79 CVE-2018-1828: IBM Rational Collaborative Lifecycle Management 6.0 through 6.0.6.1 is vulnerable to cross-site scri
IBM Rational Collaborative Lifecycle Management 6.0 through 6.0.6.1 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 150431.
nvd
CVE-2019-4249MEDIUMCVSS 5.4≥ 6.0, ≤ 6.0.6.12019-06-27
CVE-2019-4249 [MEDIUM] CWE-79 CVE-2019-4249: IBM Rational Collaborative Lifecycle Management 6.0 through 6.0.6.1 is vulnerable to cross-site scri
IBM Rational Collaborative Lifecycle Management 6.0 through 6.0.6.1 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 159647.
nvd
CVE-2018-1913MEDIUMCVSS 5.4v5.0.2v5.0+8 more2019-04-03
CVE-2018-1913 [MEDIUM] CWE-79 CVE-2018-1913: IBM DOORS Next Generation (DNG/RRC) 5.0 through 5.0.3 and 6.0 through 6.0.6 is vulnerable to cross-s
IBM DOORS Next Generation (DNG/RRC) 5.0 through 5.0.3 and 6.0 through 6.0.6 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 152737.
cvelistv5nvd
CVE-2018-1731MEDIUMCVSS 4.8v5.0.2v5.0+8 more2019-04-03
CVE-2018-1731 [MEDIUM] CWE-79 CVE-2018-1731: IBM DOORS Next Generation (DNG/RRC) 5.0 through 5.0.3 and 6.0 through 6.0.6 is vulnerable to cross-s
IBM DOORS Next Generation (DNG/RRC) 5.0 through 5.0.3 and 6.0 through 6.0.6 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 147710.
cvelistv5nvd
CVE-2018-1688MEDIUMCVSS 5.4≥ 5.0, ≤ 6.0.62019-03-14
CVE-2018-1688 [MEDIUM] CWE-79 CVE-2018-1688: IBM Jazz Foundation (IBM Rational Collaborative Lifecycle Management 5.0 through 6.0.6) is vulnerabl
IBM Jazz Foundation (IBM Rational Collaborative Lifecycle Management 5.0 through 6.0.6) is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 145509.
nvd
CVE-2018-1916MEDIUMCVSS 5.4≥ 5.0, ≤ 6.0.62019-03-14
CVE-2018-1916 [MEDIUM] CWE-79 CVE-2018-1916: IBM Jazz Foundation (IBM Rational Engineering Lifecycle Manager 5.0 through 6.0.6) is vulnerable to
IBM Jazz Foundation (IBM Rational Engineering Lifecycle Manager 5.0 through 6.0.6) is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 152740.
nvd
CVE-2018-1952MEDIUMCVSS 5.4≥ 5.0, ≤ 6.0.62019-03-14
CVE-2018-1952 [MEDIUM] CWE-79 CVE-2018-1952: IBM Jazz Foundation (IBM Rational Engineering Lifecycle Manager 5.0 through 6.0.6) is vulnerable to
IBM Jazz Foundation (IBM Rational Engineering Lifecycle Manager 5.0 through 6.0.6) is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 153495.
nvd
CVE-2018-1911MEDIUMCVSS 5.4≥ 5.0.0, ≤ 5.0.2≥ 6.0.0, ≤ 6.0.6+10 more2019-03-06
CVE-2018-1911 [MEDIUM] CWE-79 CVE-2018-1911: IBM DOORS Next Generation (DNG/RRC) 5.0 through 5.0.2 and 6.0 through 6.0.6 is vulnerable to cross-s
IBM DOORS Next Generation (DNG/RRC) 5.0 through 5.0.2 and 6.0 through 6.0.6 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 152735.
cvelistv5nvd
CVE-2018-1912MEDIUMCVSS 5.4≥ 6.0.2, ≤ 6.0.6v6.0.2+4 more2019-03-06
CVE-2018-1912 [MEDIUM] CWE-79 CVE-2018-1912: IBM DOORS Next Generation (DNG/RRC) 6.0.2 through 6.0.6 is vulnerable to cross-site scripting. This
IBM DOORS Next Generation (DNG/RRC) 6.0.2 through 6.0.6 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 152736.
cvelistv5nvd
CVE-2018-1762MEDIUMCVSS 5.4≥ 5.0.0, ≤ 5.0.2≥ 6.0.0, ≤ 6.0.62018-11-29
CVE-2018-1762 [MEDIUM] CWE-79 CVE-2018-1762: IBM Rational Collaborative Lifecycle Management 5.0 through 5.0.2 and 6.0 through 6.0.6 are vulnerab
IBM Rational Collaborative Lifecycle Management 5.0 through 5.0.2 and 6.0 through 6.0.6 are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 148616.
nvd
CVE-2018-1694MEDIUMCVSS 5.9≥ 5.0.0, ≤ 5.0.2≥ 6.0.0, ≤ 6.0.6+10 more2018-11-06
CVE-2018-1694 [MEDIUM] CVE-2018-1694: IBM Jazz applications (IBM Rational Collaborative Lifecycle Management 5.0 through 5.02 and 6.0 thro
IBM Jazz applications (IBM Rational Collaborative Lifecycle Management 5.0 through 5.02 and 6.0 through 6.0.6, IBM Rational DOORS Next Generation 5.0 through 5.02 and 6.0 through 6.0.6, IBM Rational Engineering Lifecycle Manager 5.0 through 5.02 and 6.0 through 6.0.6, IBM Rational Quality Manager 5.0 through 5.02 and 6.0 through 6.0.6, IBM Rational Rhapsody D
cvelistv5nvd
CVE-2018-1606MEDIUMCVSS 4.3≥ 5.0.0, ≤ 5.0.2≥ 6.0.0, ≤ 6.0.6+10 more2018-11-06
CVE-2018-1606 [MEDIUM] CWE-200 CVE-2018-1606: IBM Jazz based applications (IBM Rational Collaborative Lifecycle Management 5.0 through 5.02 and 6.
IBM Jazz based applications (IBM Rational Collaborative Lifecycle Management 5.0 through 5.02 and 6.0 through 6.0.6, IBM Rational DOORS Next Generation 5.0 through 5.02 and 6.0 through 6.0.6, IBM Rational Engineering Lifecycle Manager 5.0 through 5.02 and 6.0 through 6.0.6, IBM Rational Quality Manager 5.0 through 5.02 and 6.0 through 6.0.6, IBM Ratio
cvelistv5nvd
CVE-2018-1558MEDIUMCVSS 5.4≥ 5.0, ≤ 5.0.2≥ 6.0.0, ≤ 6.0.62018-10-02
CVE-2018-1558 [MEDIUM] CWE-79 CVE-2018-1558: IBM Rational Collaborative Lifecycle Management 5.0 through 5.02 and 6.0 through 6.0.6 are vulnerabl
IBM Rational Collaborative Lifecycle Management 5.0 through 5.02 and 6.0 through 6.0.6 are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 142956.
nvd
CVE-2018-1610MEDIUMCVSS 5.4≥ 5.0, ≤ 5.0.2≥ 6.0, ≤ 6.0.6+10 more2018-09-26
CVE-2018-1610 [MEDIUM] CWE-79 CVE-2018-1610: IBM Rational DOORS Next Generation 5.0 through 5.0.2 and 6.0 through 6.0.6 are vulnerable to cross-s
IBM Rational DOORS Next Generation 5.0 through 5.0.2 and 6.0 through 6.0.6 are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 143931.
cvelistv5nvd