Vulnerabilities > IBM > Engineering Requirements Quality Assistant ON Premises > High

DATE	CVE	VULNERABILITY TITLE	RISK
2021-10-27	CVE-2021-29844	Server-Side Request Forgery (SSRF) vulnerability in IBM products IBM Jazz Team Server products is vulnerable to server-side request forgery (SSRF). network low complexity ibm CWE-918	8.8
2021-03-30	CVE-2021-20502	XXE vulnerability in IBM products IBM Jazz Foundation Products are vulnerable to an XML External Entity Injection (XXE) attack when processing XML data. network low complexity ibm CWE-611	7.1

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.