NotCVE - vendor:"Ibm" product:"Rational Quality Manager" version:" >= 5.0 <= 6.0.6"

200 results (0.002 seconds)

CVSS: 5.5EPSS: 0%CPEs: 5EXPL: 0

CVE-2021-38934

https://notcve.org/view.php?id=CVE-2021-38934

29 Aug 2022 — IBM Engineering Test Management 7.0, 7.0.1, and 7.0.2 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 210671. IBM Engineering Test Management versiones 7.0, 7.0.1 y 7.0.2 es vulnerable a un ataque de tipo cross-site scripting. Esta vulnerabilidad permite a usuarios insertar código JavaScript arbitrario en la I... • https://exchange.xforce.ibmcloud.com/vulnerabilities/210671 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •

CVSS: 5.4EPSS: 0%CPEs: 25EXPL: 0

CVE-2020-5004

https://notcve.org/view.php?id=CVE-2020-5004

28 Jul 2021 — IBM Jazz Foundation products are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 192957. Los productos de IBM Jazz Foundation son vulnerables al cross-site scripting. Esta vulnerabilidad permite a los usuarios incrustar código JavaScript arbitrario en la interfaz de usuario de la web, alterando así la funcionalid... • https://exchange.xforce.ibmcloud.com/vulnerabilities/192957 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •

CVSS: 6.5EPSS: 0%CPEs: 25EXPL: 0

CVE-2020-4974

https://notcve.org/view.php?id=CVE-2020-4974

28 Jul 2021 — IBM Jazz Foundation products are vulnerable to server side request forgery (SSRF). This may allow an authenticated attacker to send unauthorized requests from the system, potentially leading to network enumeration or facilitating other attacks. IBM X-Force ID: 192434. Los productos IBM Jazz Foundation son vulnerables a la falsificación de solicitudes del lado del servidor (SSRF). Esto puede permitir que un atacante autenticado envíe solicitudes no autorizadas desde el sistema, lo que podría conducir a la en... • https://exchange.xforce.ibmcloud.com/vulnerabilities/192434 • CWE-918: Server-Side Request Forgery (SSRF) •

CVSS: 5.4EPSS: 0%CPEs: 25EXPL: 0

CVE-2021-29670

https://notcve.org/view.php?id=CVE-2021-29670

02 Jun 2021 — IBM Jazz Foundation and IBM Engineering products are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 199408. Los productos IBM Jazz Foundation e IBM Engineering son vulnerables a ataques de tipo cross-site scripting. Esta vulnerabilidad permite a usuarios insertar código JavaScript arbitrario en la Interfaz de Us... • https://exchange.xforce.ibmcloud.com/vulnerabilities/199408 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •

CVSS: 5.4EPSS: 0%CPEs: 25EXPL: 0

CVE-2021-29668

https://notcve.org/view.php?id=CVE-2021-29668

02 Jun 2021 — IBM Jazz Foundation and IBM Engineering products are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 199406. Los productos IBM Jazz Foundation e IBM Engineering son vulnerables a ataques de tipo cross-site scripting. Esta vulnerabilidad permite a usuarios insertar código JavaScript arbitrario en la Interfaz de Us... • https://exchange.xforce.ibmcloud.com/vulnerabilities/199406 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •

CVSS: 6.5EPSS: 0%CPEs: 25EXPL: 0

CVE-2021-20371

https://notcve.org/view.php?id=CVE-2021-20371

02 Jun 2021 — IBM Jazz Foundation and IBM Engineering products could allow a remote attacker to obtain sensitive information when an error message is returned in the browser. This information could be used in further attacks against the system. IBM X-Force ID: 195516. Los productos IBM Jazz Foundation e IBM Engineering podrían permitir a un atacante remoto obtener información confidencial cuando un mensaje de error es devuelto en el navegador. Esta información podría ser usada en posteriores ataques contra el sistema. • https://exchange.xforce.ibmcloud.com/vulnerabilities/195516 • CWE-209: Generation of Error Message Containing Sensitive Information •

CVSS: 5.5EPSS: 0%CPEs: 25EXPL: 0

CVE-2021-20348

https://notcve.org/view.php?id=CVE-2021-20348

02 Jun 2021 — IBM Jazz Foundation and IBM Engineering products are vulnerable to server-side request forgery (SSRF). This may allow an authenticated attacker to send unauthorized requests from the system, potentially leading to network enumeration or facilitating other attacks. IBM X-ForceID: 194597. Los productos IBM Jazz Foundation e IBM Engineering son vulnerables a ataques de tipo server-side request forgery (SSRF). Esto puede permitir a un atacante autenticado enviar peticiones no autorizadas desde el sistema, lo qu... • https://exchange.xforce.ibmcloud.com/vulnerabilities/194597 • CWE-918: Server-Side Request Forgery (SSRF) •

CVSS: 5.5EPSS: 0%CPEs: 25EXPL: 0

CVE-2021-20347

https://notcve.org/view.php?id=CVE-2021-20347

02 Jun 2021 — IBM Jazz Foundation and IBM Engineering products are vulnerable to server-side request forgery (SSRF). This may allow an authenticated attacker to send unauthorized requests from the system, potentially leading to network enumeration or facilitating other attacks. IBM X-Force ID: 194596. Los productos IBM Jazz Foundation e IBM Engineering son vulnerables a ataques de tipo server-side request forgery (SSRF). Esto puede permitir a un atacante autenticado enviar peticiones no autorizadas desde el sistema, lo q... • https://exchange.xforce.ibmcloud.com/vulnerabilities/194596 • CWE-918: Server-Side Request Forgery (SSRF) •

CVSS: 5.5EPSS: 0%CPEs: 25EXPL: 0

CVE-2021-20346

https://notcve.org/view.php?id=CVE-2021-20346

02 Jun 2021 — IBM Jazz Foundation and IBM Engineering products are vulnerable to server-side request forgery (SSRF). This may allow an authenticated attacker to send unauthorized requests from the system, potentially leading to network enumeration or facilitating other attacks. IBM X-Force ID: 194595. Los productos IBM Jazz Foundation e IBM Engineering son vulnerables a ataques de tipo server-side request forgery (SSRF). Esto puede permitir a un atacante autenticado enviar peticiones no autorizadas desde el sistema, lo q... • https://exchange.xforce.ibmcloud.com/vulnerabilities/194595 • CWE-918: Server-Side Request Forgery (SSRF) •

CVSS: 5.5EPSS: 0%CPEs: 25EXPL: 0

CVE-2021-20345

https://notcve.org/view.php?id=CVE-2021-20345

02 Jun 2021 — IBM Jazz Foundation and IBM Engineering products are vulnerable to server-side request forgery (SSRF). This may allow an authenticated attacker to send unauthorized requests from the system, potentially leading to network enumeration or facilitating other attacks. IBM X-Force ID: 194594. Los productos IBM Jazz Foundation e IBM Engineering son vulnerables a ataques de tipo server-side request forgery (SSRF). Esto puede permitir a un atacante autenticado enviar peticiones no autorizadas desde el sistema, lo q... • https://exchange.xforce.ibmcloud.com/vulnerabilities/194594 • CWE-918: Server-Side Request Forgery (SSRF) •

1 2 3 4 5