SymmetricalDataSecurity: IBM Security Bulletin: Cross-site scripting vulnerability affects IBM® Rational® Team Concert

Friday, October 26, 2018

Oct 26, 2018 9:00 am EDT

Share this post:

IBM Team Concert (RTC) is vulnerable to cross-site scripting vulnerability.

CVE(s): CVE-2018-1766

Affected product(s) and affected version(s):

Rational Collaborative Lifecycle Management 5.0 – 6.0.5

Rational Team Concert 5.0 – 5.0.2
Rational Team Concert 6.0 – 6.0.5

Version 6.0.6 is not affected.

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://www.ibm.com/support/docview.wss?uid=ibm10737301
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/148620

from IBM Product Security Incident Response Team https://ift.tt/2Sm7BsX

SymmetricalDataSecurity