Vulnerabilities > IBM > Rational Collaborative Lifecycle Management > Medium

DATE	CVE	VULNERABILITY TITLE	RISK
2021-10-27	CVE-2021-29774	Unspecified vulnerability in IBM products IBM Jazz Team Server products could allow an authenticated user to obtain elevated privileges under certain configurations. network ibm	6.0
2021-10-27	CVE-2021-29786	Cleartext Storage of Sensitive Information vulnerability in IBM products IBM Jazz Team Server products stores user credentials in clear text which can be read by an authenticated user. network low complexity ibm CWE-312	4.0
2021-07-28	CVE-2020-4974	Server-Side Request Forgery (SSRF) vulnerability in IBM products IBM Jazz Foundation products are vulnerable to server side request forgery (SSRF). network low complexity ibm CWE-918	6.5
2019-06-27	CVE-2019-4250	Cross-site Scripting vulnerability in IBM products IBM Jazz Foundation products (IBM Rational Collaborative Lifecycle Management 6.0 through 6.0.6.1) is vulnerable to cross-site scripting. network low complexity ibm CWE-79	5.4
2019-06-27	CVE-2019-4249	Cross-site Scripting vulnerability in IBM products IBM Rational Collaborative Lifecycle Management 6.0 through 6.0.6.1 is vulnerable to cross-site scripting. network low complexity ibm CWE-79	5.4
2019-06-27	CVE-2019-4084	Unspecified vulnerability in IBM products IBM Jazz Foundation products (IBM Rational Collaborative Lifecycle Management 6.0 through 6.0.6.1) could allow an authenticated user to obtain sensitive information from CLM Applications that could be used in further attacks against the system. network low complexity ibm	4.3
2019-06-27	CVE-2019-4083	Cross-site Scripting vulnerability in IBM products IBM Jazz Foundation products (IBM Rational Collaborative Lifecycle Management 6.0 through 6.0.6.1) is vulnerable to cross-site scripting. network low complexity ibm CWE-79	5.4
2019-06-27	CVE-2018-1893	Cross-site Scripting vulnerability in IBM products IBM Rational Collaborative Lifecycle Management 6.0 through 6.0.6.1 is vulnerable to cross-site scripting. network low complexity ibm CWE-79	5.4
2019-06-27	CVE-2018-1892	Cross-site Scripting vulnerability in IBM products IBM Rational Collaborative Lifecycle Management 6.0 through 6.0.6.1 is vulnerable to cross-site scripting. network low complexity ibm CWE-79	5.4
2019-06-27	CVE-2018-1828	Cross-site Scripting vulnerability in IBM products IBM Rational Collaborative Lifecycle Management 6.0 through 6.0.6.1 is vulnerable to cross-site scripting. network low complexity ibm CWE-79	5.4

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.