Cross site scripting

2021-10-2716:15:00

PRIOn knowledge base

www.prio-n.com

5.6 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

19.6%

JSON

IBM Jazz Team Server products are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 199482.

CPENameOperatorVersion
engineering_lifecycle_optimizationeq7.0.1
engineering_lifecycle_optimizationeq7.0.2
engineering_workflow_managementeq7.0.1
engineering_workflow_managementeq7.0.2
rational_collaborative_lifecycle_managementeq6.0.1
rational_collaborative_lifecycle_managementeq6.0.6
rational_doors_next_generationeq7.0
rational_doors_next_generationeq7.0.1
rational_doors_next_generationeq7.0.2
rational_engineering_lifecycle_managereq7.0

Name	Operator	Version
engineering_lifecycle_optimization	eq	7.0.1
engineering_lifecycle_optimization	eq	7.0.2
engineering_workflow_management	eq	7.0.1
engineering_workflow_management	eq	7.0.2
rational_collaborative_lifecycle_management	eq	6.0.1
rational_collaborative_lifecycle_management	eq	6.0.6
rational_doors_next_generation	eq	7.0
rational_doors_next_generation	eq	7.0.1
rational_doors_next_generation	eq	7.0.2
rational_engineering_lifecycle_manager	eq	7.0