Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveIbmCVE-2015-0130
HistoryJul 20, 2015 - 1:59 a.m.

CVE-2015-0130

2015-07-2001:59:02
CWE-79
ibm
web.nvd.nist.gov
22
cve-2015-0130
xss
ibm rational clm
jazz team server
rqm
rtc
rrc
rdng
nvd

CVSS2

3.5

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:S/C:N/I:P/A:N

AI Score

5.2

Confidence

High

EPSS

0.001

Percentile

27.4%

JSON

Cross-site scripting (XSS) vulnerability in Jazz Team Server in Jazz Foundation in IBM Rational Collaborative Lifecycle Management (CLM) 4.x before 4.0.7 IF6 and 5.x before 5.0.2 IF5; Rational Quality Manager (RQM) 4.x before 4.0.7 IF6 and 5.x before 5.0.2 IF5; Rational Team Concert (RTC) 4.x before 4.0.7 IF6 and 5.x before 5.0.2 IF5; Rational Requirements Composer (RRC) 4.x through 4.0.7; and Rational DOORS Next Generation (RDNG) 4.x before 4.0.7 IF6 and 5.x before 5.0.2 IF5 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL.

Affected configurations

Nvd
Node
ibmrational_doors_next_generationMatch4.0.0
OR
ibmrational_doors_next_generationMatch4.0.1
OR
ibmrational_doors_next_generationMatch4.0.2
OR
ibmrational_doors_next_generationMatch4.0.3
OR
ibmrational_doors_next_generationMatch4.0.4
OR
ibmrational_doors_next_generationMatch4.0.5
OR
ibmrational_doors_next_generationMatch4.0.6
OR
ibmrational_doors_next_generationMatch4.0.7
OR
ibmrational_doors_next_generationMatch5.0.0
OR
ibmrational_doors_next_generationMatch5.0.1
Node
ibmrational_team_concertMatch4.0
OR
ibmrational_team_concertMatch4.0.0.1
OR
ibmrational_team_concertMatch4.0.0.2
OR
ibmrational_team_concertMatch4.0.1
OR
ibmrational_team_concertMatch4.0.2
OR
ibmrational_team_concertMatch4.0.3
OR
ibmrational_team_concertMatch4.0.4
OR
ibmrational_team_concertMatch4.0.5
OR
ibmrational_team_concertMatch4.0.6
OR
ibmrational_team_concertMatch4.0.7
OR
ibmrational_team_concertMatch5.0.0
OR
ibmrational_team_concertMatch5.0.1
Node
ibmrational_collaborative_lifecycle_managementMatch4.0.0
OR
ibmrational_collaborative_lifecycle_managementMatch4.0.1
OR
ibmrational_collaborative_lifecycle_managementMatch4.0.2
OR
ibmrational_collaborative_lifecycle_managementMatch4.0.3
OR
ibmrational_collaborative_lifecycle_managementMatch4.0.4
OR
ibmrational_collaborative_lifecycle_managementMatch4.0.5
OR
ibmrational_collaborative_lifecycle_managementMatch4.0.6
OR
ibmrational_collaborative_lifecycle_managementMatch4.0.7
OR
ibmrational_collaborative_lifecycle_managementMatch5.0.0
OR
ibmrational_collaborative_lifecycle_managementMatch5.0.1
Node
ibmrational_requirements_composerMatch4.0.0
OR
ibmrational_requirements_composerMatch4.0.0.1
OR
ibmrational_requirements_composerMatch4.0.0.2
OR
ibmrational_requirements_composerMatch4.0.1
OR
ibmrational_requirements_composerMatch4.0.2
OR
ibmrational_requirements_composerMatch4.0.3
OR
ibmrational_requirements_composerMatch4.0.4
OR
ibmrational_requirements_composerMatch4.0.5
OR
ibmrational_requirements_composerMatch4.0.6
OR
ibmrational_requirements_composerMatch4.0.7
Node
ibmrational_quality_managerMatch4.0
OR
ibmrational_quality_managerMatch4.0.0.1
OR
ibmrational_quality_managerMatch4.0.0.2
OR
ibmrational_quality_managerMatch4.0.1
OR
ibmrational_quality_managerMatch4.0.2
OR
ibmrational_quality_managerMatch4.0.3
OR
ibmrational_quality_managerMatch4.0.4
OR
ibmrational_quality_managerMatch4.0.5
OR
ibmrational_quality_managerMatch4.0.7
OR
ibmrational_quality_managerMatch5.0.0
OR
ibmrational_quality_managerMatch5.0.1
VendorProductVersionCPE
ibmrational_doors_next_generation4.0.0cpe:2.3:a:ibm:rational_doors_next_generation:4.0.0:*:*:*:*:*:*:*
ibmrational_doors_next_generation4.0.1cpe:2.3:a:ibm:rational_doors_next_generation:4.0.1:*:*:*:*:*:*:*
ibmrational_doors_next_generation4.0.2cpe:2.3:a:ibm:rational_doors_next_generation:4.0.2:*:*:*:*:*:*:*
ibmrational_doors_next_generation4.0.3cpe:2.3:a:ibm:rational_doors_next_generation:4.0.3:*:*:*:*:*:*:*
ibmrational_doors_next_generation4.0.4cpe:2.3:a:ibm:rational_doors_next_generation:4.0.4:*:*:*:*:*:*:*
ibmrational_doors_next_generation4.0.5cpe:2.3:a:ibm:rational_doors_next_generation:4.0.5:*:*:*:*:*:*:*
ibmrational_doors_next_generation4.0.6cpe:2.3:a:ibm:rational_doors_next_generation:4.0.6:*:*:*:*:*:*:*
ibmrational_doors_next_generation4.0.7cpe:2.3:a:ibm:rational_doors_next_generation:4.0.7:*:*:*:*:*:*:*
ibmrational_doors_next_generation5.0.0cpe:2.3:a:ibm:rational_doors_next_generation:5.0.0:*:*:*:*:*:*:*
ibmrational_doors_next_generation5.0.1cpe:2.3:a:ibm:rational_doors_next_generation:5.0.1:*:*:*:*:*:*:*
Rows per page:
1-10 of 531

Related

nvd 1
ibm 1
cvelist 1
prion 1
nvd
nvd
CVE-2015-0130
2015-07-20 01:59:02
ibm
ibm
Security Bulletin: XSS Vulnerability in IBM Jazz Foundation affects multiple IBM Rational products based on IBM Jazz technology (CVE-2015-0130)
2021-04-28 18:35:50
cvelist
cvelist
CVE-2015-0130
2015-07-20 01:00:00
prion
prion
Cross site scripting
2015-07-20 01:59:00

CVSS2

3.5

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:S/C:N/I:P/A:N

AI Score

5.2

Confidence

High

EPSS

0.001

Percentile

27.4%

JSON
Related for CVE-2015-0130
nvd1ibm1cvelist1prion1