CVE-2015-7439

Name of the Vulnerable Software and Affected Versions IBM Rational Software Architect versions 8.5 through 9.5 IBM Rational Software Architect for WebSphere Software (RSA4WS) versions 8.5 through 9.5 IBM Rational Software Architect RealTime (RSART) versions 8.5 through 9.5

Description The issue is a cross-site scripting (XSS) vulnerability that allows remote attackers to inject arbitrary web script or HTML via a crafted URL. This can potentially lead to unauthorized actions on the affected system.

Recommendations For IBM Rational Software Architect versions 8.5 through 9.5, update to a version that includes the fix for this issue. For IBM Rational Software Architect for WebSphere Software (RSA4WS) versions 8.5 through 9.5, update to a version that includes the fix for this issue. For IBM Rational Software Architect RealTime (RSART) versions 8.5 through 9.5, update to a version that includes the fix for this issue. As a temporary workaround, consider restricting access to crafted URLs to minimize the risk of exploitation.