CVE-2016-9696

Name of the Vulnerable Software and Affected Versions IBM Rhapsody DM versions 4.0 through 6.0

Description The issue allows a remote attacker to inject malicious HTML code, which when viewed, would be executed in the victim's Web browser within the security context of the hosting site.

Recommendations For IBM Rhapsody DM versions 4.0 through 6.0, update to a version that addresses the HTML injection issue, as specified in the IBM Reference. At the moment, there is no information about a newer version that contains a fix for this vulnerability.