Known Vulnerabilities
CVE-2017-1509
IBM Jazz Foundation products could allow an authenticated user to obtain sensitive information from a stack trace that could be used to aid future attacks. IBM X-Force ID: 129719.
MEDIUM
CVSS 4.3
Published Jul 06, 2018
CVE-2017-1559
Multiple IBM Rational products could disclose sensitive information by an attacker that intercepts vulnerable requests. IBM X-Force ID: 131758.
LOW
CVSS 3.1
Published Jul 06, 2018
CVE-2017-1237
IBM Jazz based applications are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 124355.
MEDIUM
CVSS 5.4
Published Jul 06, 2018
CVE-2017-1488
An undisclosed vulnerability in Jazz common products exists with potential for information disclosure. IBM X-Force ID: 128627.
LOW
CVSS 3.7
Published Jul 06, 2018