IBM Rhapsody Design Manager 6.0

CPE Details

IBM Rhapsody Design Manager 6.0
ibm
rhapsody_design_manager
6.0
2017-07-05
12h10 +00:00
2017-07-05
12h10 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:ibm:rhapsody_design_manager:6.0:*:*:*:*:*:*:*

Informations

Vendor

ibm

Product

rhapsody_design_manager

Version

6.0

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2016-8975 2017-07-24 21h00 +00:00 IBM Rhapsody DM 5.0 and 6.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 118912.
5.4
Medium
CVE-2017-1249 2017-07-24 21h00 +00:00 IBM Rhapsody DM 5.0 and 6.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session.
5.4
Medium
CVE-2017-1287 2017-07-24 21h00 +00:00 IBM Rhapsody DM 5.0 and 6.0 could allow a remote attacker to conduct phishing attacks, using an open redirect attack. By persuading a victim to visit a specially-crafted Web site, a remote attacker could exploit this vulnerability to spoof the URL displayed to redirect a user to a malicious Web site that would appear to be trusted. This could allow the attacker to obtain highly sensitive information or conduct further attacks against the victim.
5.4
Medium