Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
rational engineering lifecycle manager vulnerabilities and exploits
(subscribe to this query)
312
VMScore
CVE-2015-7486
Cross-site scripting (XSS) vulnerability in IBM Rational Engineering Lifecycle Manager 3.0 prior to 3.0.1.6 iFix7 Interim Fix 1, 4.0 prior to 4.0.7 iFix10, 5.0 prior to 5.0.2 iFix15, and 6.0 prior to 6.0.1 iFix4 allows remote malicious users to inject arbitrary web script or HTML...
Ibm Rational Engineering Lifecycle Manager
490
VMScore
CVE-2018-1607
IBM Rational Engineering Lifecycle Manager 5.0 up to and including 5.02 and 6.0 up to and including 6.0.6 is vulnerable to a XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or ...
Ibm Rational Engineering Lifecycle Manager
490
VMScore
CVE-2018-1846
IBM Rational Engineering Lifecycle Manager 5.0 up to and including 5.0.2 and 6.0 up to and including 6.0.6 are vulnerable to a XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information o...
Ibm Rational Engineering Lifecycle Manager
312
VMScore
CVE-2018-1914
IBM Rational Engineering Lifecycle Manager 5.0 up to and including 6.0.6 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure ...
Ibm Rational Engineering Lifecycle Manager
312
VMScore
CVE-2018-1659
IBM Rational Engineering Lifecycle Manager 5.0 up to and including 5.02 and 6.0 up to and including 6.0.6 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially l...
Ibm Rational Engineering Lifecycle Manager
490
VMScore
CVE-2018-1588
IBM Jazz Foundation (IBM Rational Engineering Lifecycle Manager 5.0 up to and including 5.02 and 6.0 up to and including 6.0.6) is vulnerable to a XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose sen...
Ibm Rational Engineering Lifecycle Manager
445
VMScore
CVE-2018-1608
IBM Rational Engineering Lifecycle Manager 6.0 up to and including 6.0.6 uses weaker than expected cryptographic algorithms that could allow an malicious user to decrypt highly sensitive information. IBM X-Force ID: 143798.
Ibm Rational Engineering Lifecycle Manager
570
VMScore
CVE-2018-1539
IBM Rational Engineering Lifecycle Manager 5.0 up to and including 5.02 and 6.0 up to and including 6.0.6 could allow remote malicious users to bypass authentication via a direct request or forced browsing to a page other than URL intended. IBM X-Force ID: 142561.
Ibm Rational Engineering Lifecycle Manager
312
VMScore
CVE-2018-1560
IBM Rational Engineering Lifecycle Manager 5.0 up to and including 5.02 and 6.0 up to and including 6.0.6 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially l...
Ibm Rational Engineering Lifecycle Manager
312
VMScore
CVE-2018-1910
IBM Rational Engineering Lifecycle Manager 5.0 up to and including 6.0.6 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure ...
Ibm Rational Engineering Lifecycle Manager
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »