Unrated severityNVD Advisory· Published Feb 26, 2014· Updated Jun 17, 2026
CVE-2014-0840
CVE-2014-0840
Description
Multiple cross-site scripting (XSS) vulnerabilities in IBM Rational Focal Point 6.4.x and 6.5.x before 6.5.2.3 and 6.6.x before 6.6.1 allow remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.
Affected products
18cpe:2.3:a:ibm:rational_focal_point:6.4:*:*:*:*:*:*:*+ 17 more
- cpe:2.3:a:ibm:rational_focal_point:6.4:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:rational_focal_point:6.4.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:rational_focal_point:6.4.1.0:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:rational_focal_point:6.4.1.1:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:rational_focal_point:6.4.1.2:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:rational_focal_point:6.4.1.3:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:rational_focal_point:6.5:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:rational_focal_point:6.5.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:rational_focal_point:6.5.0.2:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:rational_focal_point:6.5.1:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:rational_focal_point:6.5.1.1:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:rational_focal_point:6.5.2:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:rational_focal_point:6.5.2.1:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:rational_focal_point:6.5.2.2:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:rational_focal_point:6.5.2.3:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:rational_focal_point:6.6:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:rational_focal_point:6.6.0.1:*:*:*:*:*:*:*
- (no CPE)range: 6.4.x, 6.5.x < 6.5.2.3, 6.6.x < 6.6.1
Patches
Vulnerability mechanics
References
3- www-01.ibm.com/support/docview.wssnvdPatchVendor Advisory
- www.securityfocus.com/bid/65737nvdThird Party AdvisoryVDB Entry
- exchange.xforce.ibmcloud.com/vulnerabilities/90698nvd
News mentions
0No linked articles in our index yet.