Vulnerabilities > IBM > Rational Collaborative Lifecycle Management > 4.0

DATE	CVE	VULNERABILITY TITLE	RISK
2017-06-13	CVE-2017-1099	Information Exposure vulnerability in IBM products IBM Jazz Foundation could expose potentially sensitive information to authenticated users through stack trace error conditions. network low complexity ibm CWE-200	4.3
2017-06-13	CVE-2016-9973	Cross-site Scripting vulnerability in IBM products IBM Jazz Foundation is vulnerable to cross-site scripting. network low complexity ibm CWE-79	5.4
2017-05-15	CVE-2016-9735	Information Exposure vulnerability in IBM products IBM Jazz Foundation could allow an authenticated user to obtain sensitive information from stack traces. network low complexity ibm CWE-200	4.3
2017-03-31	CVE-2016-9707	XXE vulnerability in IBM products IBM Jazz Foundation is vulnerable to a denial of service, caused by an XML External Entity Injection (XXE) error when processing XML data. network low complexity ibm CWE-611	8.1
2017-03-20	CVE-2016-2981	Information Exposure vulnerability in IBM Rational Collaborative Lifecycle Management An undisclosed vulnerability in the CLM applications in IBM Jazz Team Server may allow unauthorized access to user credentials. low complexity ibm CWE-200	6.8

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.