IBM Rational DOORS Next Generation CVE-2018-1529 Cross Site Scripting Vulnerability
BID:104928
CVE-2018-1529 |Info
IBM Rational DOORS Next Generation CVE-2018-1529 Cross Site Scripting Vulnerability
| Bugtraq ID: | 104928 |
| Class: | Input Validation Error |
| CVE: |
CVE-2018-1529 |
| Remote: | Yes |
| Local: | No |
| Published: | Jul 16 2018 12:00AM |
| Updated: | Jul 16 2018 12:00AM |
| Credit: | IBM |
| Vulnerable: |
IBM Rational Requirements Composer 5.0.2 IBM Rational Requirements Composer 5.0.1 IBM Rational Requirements Composer 5.0 IBM Rational DOORS Next Generation 6.0.4 IBM Rational DOORS Next Generation 6.0.3 IBM Rational DOORS Next Generation 6.0.2 IBM Rational DOORS Next Generation 6.0.1 IBM Rational DOORS Next Generation 6.0.5 IBM Rational DOORS Next Generation 6.0 |
| Not Vulnerable: | |
Discussion
IBM Rational DOORS Next Generation CVE-2018-1529 Cross Site Scripting Vulnerability
IBM Rational DOORS Next Generation is prone to an unspecified cross-site scripting vulnerability because it fails to sanitize user-supplied input.
An attacker may leverage this issue to execute arbitrary script code in an unsuspecting user's browser in the context of the affected site. This may allow the attacker to steal cookie-based authentication credentials and launch other attacks.
IBM Rational DOORS Next Generation is prone to an unspecified cross-site scripting vulnerability because it fails to sanitize user-supplied input.
An attacker may leverage this issue to execute arbitrary script code in an unsuspecting user's browser in the context of the affected site. This may allow the attacker to steal cookie-based authentication credentials and launch other attacks.
Solution / Fix
IBM Rational DOORS Next Generation CVE-2018-1529 Cross Site Scripting Vulnerability
Solution:
Updates are available. Please see the references or vendor advisory for more information.
Solution:
Updates are available. Please see the references or vendor advisory for more information.