Home Unlabelled IBM Security Bulletin: Multiple vulnerabilities in certain services of IBM Rational Software Architect Design Manager

IBM Security Bulletin: Multiple vulnerabilities in certain services of IBM Rational Software Architect Design Manager

By
Wednesday, August 02, 2017
Read
Add Comment

A number of services in Rational Software Architect Design Manager were not sanitizing user input properly thus potentially allowing cross-site scripting, json hijacking, and HTML injection attacks.

CVE(s): CVE-2015-7485, CVE-2016-9694, CVE-2016-9696, CVE-2016-9697, CVE-2016-8975, CVE-2017-1245

Affected product(s) and affected version(s):

IBM Rational Software Architect Design Manager 4.0.0 – 4.0.7
IBM Rational Software Architect Design Manager 5.0.0 – 5.0.2
IBM Rational Software Architect Design Manager 6.0.0 – 6.0.2

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2hnzcf9
X-Force Database: http://ift.tt/1U5JqtV
X-Force Database: http://ift.tt/2mn32PQ
X-Force Database: http://ift.tt/2mKw1jb
X-Force Database: http://ift.tt/2mmRDzk
X-Force Database: http://ift.tt/2uhRWzq
X-Force Database: http://ift.tt/2uPZxbC

The post IBM Security Bulletin: Multiple vulnerabilities in certain services of IBM Rational Software Architect Design Manager appeared first on IBM PSIRT Blog.



from IBM Product Security Incident Response Team http://ift.tt/2f8ySjv
Tags :

Created By Nexus · Powered by Blogger
© All Rights Reserved

Terms Of Service · Privacy Policy · Disclaimer · Contact Us · About Us