Unrated severityNVD Advisory· Published Mar 13, 2015· Updated Jun 17, 2026
CVE-2014-6144
CVE-2014-6144
Description
Cross-site scripting (XSS) vulnerability in IBM Rational Quality Manager (RQM) 2.x and 3.x before 3.0.1.6 iFix 5, 4.x before 4.0.7 iFix3, and 5.x before 5.0.2 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL.
Affected products
25cpe:2.3:a:ibm:rational_quality_manager:2.0:*:*:*:*:*:*:*+ 24 more
- cpe:2.3:a:ibm:rational_quality_manager:2.0:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:rational_quality_manager:2.0.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:rational_quality_manager:2.0.0.2:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:rational_quality_manager:2.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:rational_quality_manager:2.0.1.1:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:rational_quality_manager:3.0:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:rational_quality_manager:3.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:rational_quality_manager:3.0.1.1:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:rational_quality_manager:3.0.1.2:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:rational_quality_manager:3.0.1.3:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:rational_quality_manager:3.0.1.4:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:rational_quality_manager:3.0.1.5:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:rational_quality_manager:3.0.1.6:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:rational_quality_manager:4.0:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:rational_quality_manager:4.0.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:rational_quality_manager:4.0.0.2:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:rational_quality_manager:4.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:rational_quality_manager:4.0.2:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:rational_quality_manager:4.0.3:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:rational_quality_manager:4.0.4:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:rational_quality_manager:4.0.5:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:rational_quality_manager:4.0.7:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:rational_quality_manager:5.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:rational_quality_manager:5.0.1:*:*:*:*:*:*:*
- (no CPE)range: 2.x, 3.x < 3.0.1.6 iFix5, 4.x < 4.0.7 iFix3, 5.x < 5.0.2
Patches
Vulnerability mechanics
References
2- www-01.ibm.com/support/docview.wssnvdPatchVendor Advisory
- www.securitytracker.com/id/1031885nvd
News mentions
0No linked articles in our index yet.