CVE-2017-1242

Name of the Vulnerable Software and Affected Versions: IBM Quality Manager (RQM) versions 5.0.x and 6.0 through 6.0.5

Description: The issue allows a remote attacker to inject malicious HTML code, which when viewed, would be executed in the victim's Web browser within the security context of the hosting site.

Recommendations: For versions 5.0.x, update to a version that is not affected by this issue. For versions 6.0 through 6.0.5, update to a version that is not affected by this issue. As a temporary workaround, consider restricting access to the affected web interface to minimize the risk of exploitation.