Page 5 of 22 results (0.005 seconds)

CVSS: 5.4EPSS: 0%CPEs: 4EXPL: 0

IBM Rational Requirements Composer before 4.0.4 does not properly perform authentication, which has unspecified impact and remote attack vectors. IBM Rational Requirements Composer anterior a v4.0.4 no realiza una autenticación adecuada, lo cual tiene un impacto no especificado y vectores de ataque remotos. • http://www-01.ibm.com/support/docview.wss?uid=swg21645927 https://exchange.xforce.ibmcloud.com/vulnerabilities/84709 • CWE-287: Improper Authentication •

CVSS: 4.9EPSS: 0%CPEs: 4EXPL: 0

Open redirect vulnerability in IBM Rational Requirements Composer before 4.0.4 allows remote authenticated users to redirect users to arbitrary web sites and conduct phishing attacks via a crafted URL. Vulnerabilidad de redirección abierta en IBM Rational Requirements Composer anterior a v4.0.4 permite a usuarios autenticados remotamente redireccionar a usuarios a sitios web arbitrarios y llevar a cabo ataques de phishing a través de una URL manipulada. • http://www-01.ibm.com/support/docview.wss?uid=swg21645927 https://exchange.xforce.ibmcloud.com/vulnerabilities/84688 • CWE-20: Improper Input Validation •