What is CVE-2017-1565?

CVE-2017-1565 is a vulnerability in IBM Rational Quality Manager and IBM Rational Collaborative Lifecycle Management versions 5.0 through 5.0.2 and 6.0 through 6.0.5 that allows for cross-site scripting attacks.

How severe is CVE-2017-1565?

CVE-2017-1565 has a severity rating of 5.4, which is considered medium.

How does CVE-2017-1565 affect IBM Rational Collaborative Lifecycle Management?

IBM Rational Collaborative Lifecycle Management versions 5.0 through 5.0.2 and 6.0 through 6.0.5 are affected by CVE-2017-1565, making them vulnerable to cross-site scripting attacks.

How does CVE-2017-1565 affect IBM Rational Quality Manager?

IBM Rational Quality Manager versions 5.0 through 5.0.2 and 6.0 through 6.0.5 are affected by CVE-2017-1565, making them vulnerable to cross-site scripting attacks.

How can I fix CVE-2017-1565?

To fix CVE-2017-1565, it is recommended to update IBM Rational Quality Manager and IBM Rational Collaborative Lifecycle Management versions 5.0 through 5.0.2 and 6.0 through 6.0.5 to the latest available patches or versions.

Vulnerability/
CVE-2017-1565

medium

5.4

CWE

3/7/2018

16/9/2024

CVE-2017-1565: XSS

First published: Tue Jul 03 2018(Updated: )

IBM Rational Quality Manager and IBM Rational Collaborative Lifecycle Management 5.0 through 5.0.2 and 6.0 through 6.0.5 are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 131765.

Credit: psirt@us.ibm.com

Affected Software	Affected Version	How to fix
IBM Rational Collaborative Lifecycle Management	=5.0
IBM Rational Collaborative Lifecycle Management	=5.0.1
IBM Rational Collaborative Lifecycle Management	=5.0.2
IBM Rational Collaborative Lifecycle Management	=6.0
IBM Rational Collaborative Lifecycle Management	=6.0.1
IBM Rational Collaborative Lifecycle Management	=6.0.2
IBM Rational Collaborative Lifecycle Management	=6.0.3
IBM Rational Collaborative Lifecycle Management	=6.0.4
IBM Rational Collaborative Lifecycle Management	=6.0.5
IBM Rational Quality Manager	=5.0
IBM Rational Quality Manager	=5.0.1
IBM Rational Quality Manager	=5.0.2
IBM Rational Quality Manager	=6.0
IBM Rational Quality Manager	=6.0.1
IBM Rational Quality Manager	=6.0.2
IBM Rational Quality Manager	=6.0.3
IBM Rational Quality Manager	=6.0.4
IBM Rational Quality Manager	=6.0.5

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is CVE-2017-1565?
CVE-2017-1565 is a vulnerability in IBM Rational Quality Manager and IBM Rational Collaborative Lifecycle Management versions 5.0 through 5.0.2 and 6.0 through 6.0.5 that allows for cross-site scripting attacks.
How severe is CVE-2017-1565?
CVE-2017-1565 has a severity rating of 5.4, which is considered medium.
How does CVE-2017-1565 affect IBM Rational Collaborative Lifecycle Management?
IBM Rational Collaborative Lifecycle Management versions 5.0 through 5.0.2 and 6.0 through 6.0.5 are affected by CVE-2017-1565, making them vulnerable to cross-site scripting attacks.
How does CVE-2017-1565 affect IBM Rational Quality Manager?
IBM Rational Quality Manager versions 5.0 through 5.0.2 and 6.0 through 6.0.5 are affected by CVE-2017-1565, making them vulnerable to cross-site scripting attacks.
How can I fix CVE-2017-1565?
To fix CVE-2017-1565, it is recommended to update IBM Rational Quality Manager and IBM Rational Collaborative Lifecycle Management versions 5.0 through 5.0.2 and 6.0 through 6.0.5 to the latest available patches or versions.

collector/nvd-index
agent/weakness
agent/type
agent/description
agent/event
agent/severity
agent/references
agent/author
agent/first-publish-date
agent/last-modified-date
agent/softwarecombine
agent/tags
collector/mitre-cve
source/MITRE
vendor/ibm
canonical/ibm rational collaborative lifecycle management
version/ibm rational collaborative lifecycle management/5.0
version/ibm rational collaborative lifecycle management/5.0.1
version/ibm rational collaborative lifecycle management/5.0.2
version/ibm rational collaborative lifecycle management/6.0
version/ibm rational collaborative lifecycle management/6.0.1
version/ibm rational collaborative lifecycle management/6.0.2
version/ibm rational collaborative lifecycle management/6.0.3
version/ibm rational collaborative lifecycle management/6.0.4
version/ibm rational collaborative lifecycle management/6.0.5
canonical/ibm rational quality manager
version/ibm rational quality manager/5.0
version/ibm rational quality manager/5.0.1
version/ibm rational quality manager/5.0.2
version/ibm rational quality manager/6.0
version/ibm rational quality manager/6.0.1
version/ibm rational quality manager/6.0.2
version/ibm rational quality manager/6.0.3
version/ibm rational quality manager/6.0.4
version/ibm rational quality manager/6.0.5