Jul 15, 2020 8:01 pm EDT
Categorized: Medium Severity
Share this post:
There is a Cross-site scripting vulnerability that are used by IBM Jazz Team Server affecting the following IBM Jazz Team Server based Applications: Engineering Lifecycle Management (ELM), IBM Engineering Requirements Management DOORS Next (DOORS Next), IBM Engineering Lifecycle Optimization – Engineering Insights (ENI), IBM Engineering Workflow Management (EWM), IBM Engineering Systems Design Rhapsody – Design Manager (RDM), IBM Engineering Systems Design Rhapsody – Model Manager (RMM).
Affected product(s) and affected version(s):
| Affected Product(s) | Version(s) |
| ETM | 7.0 |
| RQM | 6.0.6.1 |
| RQM | 6.0.6 |
| RQM | 6.0.2 |
| DOORS Next | 7.0 |
| RDNG | 6.0.2 |
| RDNG | 6.0.6.1 |
| RDNG | 6.0.6 |
| EWM | 7.0 |
| RTC | 6.0.2 |
| RTC | 6.0.6.1 |
| RTC | 6.0.6 |
| ELM | 7.0 |
| CLM | 6.0.6.1 |
| CLM | 6.0.6 |
| CLM | 6.0.2 |
| RDM | 7.0 |
| Rhapsody DM | 6.0.6 |
| Rhapsody DM | 6.0.6.1 |
| Rhapsody DM | 6.0.2 |
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: https://www.ibm.com/support/pages/node/6249133
from IBM Product Security Incident Response Team https://ift.tt/2CiMl4n
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.