Unrated severityNVD Advisory· Published Feb 26, 2014· Updated Apr 29, 2026
CVE-2014-0853
CVE-2014-0853
Description
Multiple cross-site scripting (XSS) vulnerabilities in the (1) ForwardController and (2) AttributeEditor scripts in IBM Rational Focal Point 6.4.x and 6.5.x before 6.5.2.3 and 6.6.x before 6.6.1 allow remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.
Affected products
17cpe:2.3:a:ibm:rational_focal_point:6.4:*:*:*:*:*:*:*+ 16 more
- cpe:2.3:a:ibm:rational_focal_point:6.4:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:rational_focal_point:6.4.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:rational_focal_point:6.4.1.0:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:rational_focal_point:6.4.1.1:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:rational_focal_point:6.4.1.2:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:rational_focal_point:6.4.1.3:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:rational_focal_point:6.5:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:rational_focal_point:6.5.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:rational_focal_point:6.5.0.2:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:rational_focal_point:6.5.1:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:rational_focal_point:6.5.1.1:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:rational_focal_point:6.5.2:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:rational_focal_point:6.5.2.1:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:rational_focal_point:6.5.2.2:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:rational_focal_point:6.5.2.3:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:rational_focal_point:6.6:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:rational_focal_point:6.6.0.1:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
3- www-01.ibm.com/support/docview.wssnvdPatchVendor Advisory
- www.securityfocus.com/bid/65726nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/90754nvd
News mentions
0No linked articles in our index yet.