CVE-2016-6055

Summary

IBM Rational DOORS Next Generation 4.0, 5.0, and 6.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM Reference #: 1995515.

Affected Software

VendorProductVersion RangeStatus
IBM CorporationRational DOORS Next Generation4.0.1affected
IBM CorporationRational DOORS Next Generation4.0.5affected
IBM CorporationRational DOORS Next Generation5.0.2affected
IBM CorporationRational DOORS Next Generation4.0.2affected
IBM CorporationRational DOORS Next Generation4.0.3affected
IBM CorporationRational DOORS Next Generation4.0.4affected
IBM CorporationRational DOORS Next Generation4.0.6affected
IBM CorporationRational DOORS Next Generation4.0.7affected
IBM CorporationRational DOORS Next Generation5.0affected
IBM CorporationRational DOORS Next Generation5.0.1affected
IBM CorporationRational DOORS Next Generation6.0affected
IBM CorporationRational DOORS Next Generation6.0.1affected
IBM CorporationRational DOORS Next Generation6.0.2affected
IBM CorporationRational DOORS Next Generation6.0.3affected

Weaknesses

  • Cross-Site Scripting

ADP Enrichment

CVE Program Container

Additional References

References