CVE-2016-2926

Name of the Vulnerable Software and Affected Versions IBM Rational Collaborative Lifecycle Management versions 4.0 through 4.0.7 before iFix11 IBM Rational Collaborative Lifecycle Management versions 5.0 through 5.0.2 before iFix19 IBM Rational Collaborative Lifecycle Management versions 6.0 through 6.0.2 before iFix3 IBM Rational Quality Manager versions 4.0 through 4.0.7 before iFix11 IBM Rational Quality Manager versions 5.0 through 5.0.2 before iFix19 IBM Rational Quality Manager versions 6.0 through 6.0.2 before iFix3 IBM Rational Team Concert versions 4.0 through 4.0.7 before iFix11 IBM Rational Team Concert versions 5.0 through 5.0.2 before iFix19 IBM Rational Team Concert versions 6.0 through 6.0.2 before iFix3 IBM Rational DOORS Next Generation versions 4.0 through 4.0.7 before iFix11 IBM Rational DOORS Next Generation versions 5.0 through 5.0.2 before iFix19 IBM Rational DOORS Next Generation versions 6.0 through 6.0.2 before iFix3 IBM Rational Engineering Lifecycle Manager versions 4.x through 4.0.7 before iFix11 IBM Rational Engineering Lifecycle Manager versions 5.0 through 5.0.2 before iFix19 IBM Rational Engineering Lifecycle Manager versions 6.0 through 6.0.2 before iFix3 IBM Rational Rhapsody Design Manager versions 4.0 through 4.0.7 before iFix11 IBM Rational Rhapsody Design Manager versions 5.0 through 5.0.2 before iFix19 IBM Rational Rhapsody Design Manager versions 6.0 through 6.0.2 before iFix3 IBM Rational Software Architect Design Manager versions 4.0 through 4.0.7 before iFix11 IBM Rational Software Architect Design Manager versions 5.0 through 5.0.2 before iFix19 IBM Rational Software Architect Design Manager versions 6.0 through 6.0.2 before iFix3

Description A cross-site scripting (XSS) issue allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL.

Recommendations For IBM Rational Collaborative Lifecycle Management versions 4.0 through 4.0.7 before iFix11, apply iFix11. For IBM Rational Collaborative Lifecycle Management versions 5.0 through 5.0.2 before iFix19, apply iFix19. For IBM Rational Collaborative Lifecycle Management versions 6.0 through 6.0.2 before iFix3, apply iFix3. For IBM Rational Quality Manager versions 4.0 through 4.0.7 before iFix11, apply iFix11. For IBM Rational Quality Manager versions 5.0 through 5.0.2 before iFix19, apply iFix19. For IBM Rational Quality Manager versions 6.0 through 6.0.2 before iFix3, apply iFix3. For IBM Rational Team Concert versions 4.0 through 4.0.7 before iFix11, apply iFix11. For IBM Rational Team Concert versions 5.0 through 5.0.2 before iFix19, apply iFix19. For IBM Rational Team Concert versions 6.0 through 6.0.2 before iFix3, apply iFix3. For IBM Rational DOORS Next Generation versions 4.0 through 4.0.7 before iFix11, apply iFix11. For IBM Rational DOORS Next Generation versions 5.0 through 5.0.2 before iFix19, apply iFix19. For IBM Rational DOORS Next Generation versions 6.0 through 6.0.2 before iFix3, apply iFix3. For IBM Rational Engineering Lifecycle Manager versions 4.x through 4.0.7 before iFix11, apply iFix11. For IBM Rational Engineering Lifecycle Manager versions 5.0 through 5.0.2 before iFix19, apply iFix19. For IBM Rational Engineering Lifecycle Manager versions 6.0 through 6.0.2 before iFix3, apply iFix3. For IBM Rational Rhapsody Design Manager versions 4.0 through 4.0.7 before iFix11, apply iFix11. For IBM Rational Rhapsody Design Manager versions 5.0 through 5.0.2 before iFix19, apply iFix19. For IBM Rational Rhapsody Design Manager versions 6.0 through 6.0.2 before iFix3, apply iFix3. For IBM Rational Software Architect Design Manager versions 4.0 through 4.0.7 before iFix11, apply iFix11. For IBM Rational Software Architect Design Manager versions 5.0 through 5.0.2 before iFix19, apply iFix19. For IBM Rational Software Architect Design Manager versions 6.0 through 6.0.2 before iFix3, apply iFix3.