Vulnerabilities > IBM > Rational Rhapsody Design Manager > 7.0.0
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-08-04 | CVE-2020-4525 | Cross-site Scripting vulnerability in IBM products IBM Jazz Foundation and IBM Engineering products are vulnerable to cross-site scripting. | 3.5 |
| 2020-08-04 | CVE-2020-4410 | Information Exposure vulnerability in IBM products IBM Jazz Foundation and IBM Engineering products could allow an authenticated user to send a specially crafted HTTP GET request to read attachments on the server that they should not have access to. | 4.0 |