Medium severity5.4NVD Advisory· Published Jul 3, 2018· Updated Jun 17, 2026
CVE-2017-1275
CVE-2017-1275
Description
IBM Rational Quality Manager and IBM Rational Collaborative Lifecycle Management 5.0 through 5.0.2 and 6.0 through 6.0.5 are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 124750.
Affected products
45.0 - 5.0.2, 6.0 - 6.0.5+ 1 more
- (no CPE)range: 5.0 - 5.0.2, 6.0 - 6.0.5
- (no CPE)range: 5.0
5.0 - 5.0.2, 6.0 - 6.0.5+ 1 more
- (no CPE)range: 5.0 - 5.0.2, 6.0 - 6.0.5
- (no CPE)range: 5.0
Patches
Vulnerability mechanics
References
2- exchange.xforce.ibmcloud.com/vulnerabilities/124750nvdVDB EntryVendor Advisory
- www-prd-trops.events.ibm.com/node/715749nvdPermissions Required
News mentions
0No linked articles in our index yet.