CVE-2016-3014

Name of the Vulnerable Software and Affected Versions IBM Rational Collaborative Lifecycle Management versions 4.0 through 4.0.7 before iFix11 IBM Rational Collaborative Lifecycle Management versions 5.0 through 5.0.2 before iFix17 IBM Rational Quality Manager versions 4.0 through 4.0.7 before iFix11 IBM Rational Quality Manager versions 5.0 through 5.0.2 before iFix17 IBM Rational Team Concert versions 4.0 through 4.0.7 before iFix11 IBM Rational Team Concert versions 5.0 through 5.0.2 before iFix17 IBM Rational DOORS Next Generation versions 4.0 through 4.0.7 before iFix11 IBM Rational DOORS Next Generation versions 5.0 through 5.0.2 before iFix17 IBM Rational Engineering Lifecycle Manager versions 4.x through 4.0.7 before iFix11 IBM Rational Engineering Lifecycle Manager versions 5.0 through 5.0.2 before iFix17 IBM Rational Rhapsody Design Manager versions 4.0 through 4.0.7 before iFix11 IBM Rational Rhapsody Design Manager versions 5.0 through 5.0.2 before iFix17 IBM Rational Software Architect Design Manager versions 4.0 through 4.0.7 before iFix11 IBM Rational Software Architect Design Manager versions 5.0 through 5.0.2 before iFix17

Description A cross-site scripting (XSS) issue allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.

Recommendations For IBM Rational Collaborative Lifecycle Management versions 4.0 through 4.0.7 before iFix11, apply iFix11 to resolve the issue. For IBM Rational Collaborative Lifecycle Management versions 5.0 through 5.0.2 before iFix17, apply iFix17 to resolve the issue. For IBM Rational Quality Manager versions 4.0 through 4.0.7 before iFix11, apply iFix11 to resolve the issue. For IBM Rational Quality Manager versions 5.0 through 5.0.2 before iFix17, apply iFix17 to resolve the issue. For IBM Rational Team Concert versions 4.0 through 4.0.7 before iFix11, apply iFix11 to resolve the issue. For IBM Rational Team Concert versions 5.0 through 5.0.2 before iFix17, apply iFix17 to resolve the issue. For IBM Rational DOORS Next Generation versions 4.0 through 4.0.7 before iFix11, apply iFix11 to resolve the issue. For IBM Rational DOORS Next Generation versions 5.0 through 5.0.2 before iFix17, apply iFix17 to resolve the issue. For IBM Rational Engineering Lifecycle Manager versions 4.x through 4.0.7 before iFix11, apply iFix11 to resolve the issue. For IBM Rational Engineering Lifecycle Manager versions 5.0 through 5.0.2 before iFix17, apply iFix17 to resolve the issue. For IBM Rational Rhapsody Design Manager versions 4.0 through 4.0.7 before iFix11, apply iFix11 to resolve the issue. For IBM Rational Rhapsody Design Manager versions 5.0 through 5.0.2 before iFix17, apply iFix17 to resolve the issue. For IBM Rational Software Architect Design Manager versions 4.0 through 4.0.7 before iFix11, apply iFix11 to resolve the issue. For IBM Rational Software Architect Design Manager versions 5.0 through 5.0.2 before iFix17, apply iFix17 to resolve the issue.