Medium severity5.4NVD Advisory· Published Nov 25, 2016· Updated Jun 17, 2026
CVE-2016-2986
CVE-2016-2986
Description
Cross-site scripting (XSS) vulnerability in IBM Rational Collaborative Lifecycle Management 6.x before 6.0.1 iFix6, Rational Quality Manager 6.x before 6.0.1 iFix6, Rational Team Concert 6.x before 6.0.1 iFix6, Rational DOORS Next Generation 6.x before 6.0.1 iFix6, Rational Engineering Lifecycle Manager 6.x before 6.0.1 iFix6, and Rational Rhapsody Design Manager 6.x before 6.0.1 iFix6 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
21cpe:2.3:a:ibm:rational_doors_next_generation:6.0.0:*:*:*:*:*:*:*+ 3 more
- cpe:2.3:a:ibm:rational_doors_next_generation:6.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:rational_doors_next_generation:6.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:rational_doors_next_generation:6.0.2:*:*:*:*:*:*:*
- (no CPE)range: <6.0.1 iFix6
cpe:2.3:a:ibm:rational_engineering_lifecycle_manager:6.0.0:*:*:*:*:*:*:*+ 3 more
- cpe:2.3:a:ibm:rational_engineering_lifecycle_manager:6.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:rational_engineering_lifecycle_manager:6.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:rational_engineering_lifecycle_manager:6.0.2:*:*:*:*:*:*:*
- (no CPE)range: <6.0.1 iFix6
cpe:2.3:a:ibm:rational_quality_manager:6.0.0:*:*:*:*:*:*:*+ 3 more
- cpe:2.3:a:ibm:rational_quality_manager:6.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:rational_quality_manager:6.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:rational_quality_manager:6.0.2:*:*:*:*:*:*:*
- (no CPE)range: <6.0.1 iFix6
cpe:2.3:a:ibm:rational_rhapsody_design_manager:6.0.0:*:*:*:*:*:*:*+ 3 more
- cpe:2.3:a:ibm:rational_rhapsody_design_manager:6.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:rational_rhapsody_design_manager:6.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:rational_rhapsody_design_manager:6.0.2:*:*:*:*:*:*:*
- (no CPE)range: <6.0.1 iFix6
cpe:2.3:a:ibm:rational_team_concert:6.0.0:*:*:*:*:*:*:*+ 3 more
- cpe:2.3:a:ibm:rational_team_concert:6.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:rational_team_concert:6.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:rational_team_concert:6.0.2:*:*:*:*:*:*:*
- (no CPE)range: <6.0.1 iFix6
- Range: <6.0.1 iFix6
Patches
Vulnerability mechanics
References
2- www-01.ibm.com/support/docview.wssnvdVendor Advisory
- www.securityfocus.com/bid/92869nvd
News mentions
0No linked articles in our index yet.