ibm rational-doors-next-generation CVE-2018-1394 vulnerability in IBM Products
Published on August 20, 2018

Multiple IBM Rational products are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 138425.

NVD


Products Associated with CVE-2018-1394

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2018-1394 are published in these products:

IBM Rational Doors Next Generation
 
IBM Rational Engineering Lifecycle Manager
 
IBM Rational Quality Manager
 
IBM Rational Rhapsody Design Manager
 
IBM Rational Software Architect Design Manager
 
IBM Rational Team Concert
 

Affected Versions

IBM Rational DOORS Next Generation: IBM Rational Rhapsody Design Manager: IBM Rational Collaborative Lifecycle Management: IBM Rational Engineering Lifecycle Manager: IBM Rational Software Architect Design Manager: IBM Rational Quality Manager: IBM Rational Team Concert:

Exploit Probability

EPSS
0.11%
Percentile
28.68%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.