Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo

SDLC

IBM RTC

Rational Team Concert is a team collaboration tool that is built on a scalable extensible platform. Rational Team Concert uses the Change and Configuration Management (CCM) application to provide features that integrate development project tasks including iteration planning process definition change management defect tracking source control build automation and reporting.

Official Site:

https://www.ibm.com/support/knowledgecenter/SSYMRC_6.0.4/com.ibm.team.concert.doc/topics/c_product-overview.html

Severity Summary:

High: 9 Medium: 129 Low: 11
Reference
Title
Severity
CVE-2020-4524
IBM RTC Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2020-4547
IBM RTC Improper Restriction of Rendered UI Layers or Frames Vulnerability
Medium
CVE-2020-4855
IBM RTC Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2020-4865
IBM RTC Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2021-20357
IBM RTC Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2011-2606
IBM RTC Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2011-2607
IBM RTC Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2012-0748
IBM RTC Cross-Site Request Forgery (CSRF) Vulnerability
Medium
CVE-2016-9973
IBM RTC Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2014-3092
IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
Medium
CVE-2016-2987
IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
Medium
CVE-2017-1099
IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
Medium
CVE-2018-1766
IBM RTC Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2018-1916
IBM RTC Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2018-1761
IBM RTC Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2018-1688
IBM RTC Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2018-1762
IBM RTC Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2018-1694
IBM RTC Vulnerability
Medium
CVE-2018-1606
IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
Medium
CVE-2018-1558
IBM RTC Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2018-1982
IBM RTC Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2018-1394
IBM RTC Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2017-1753
IBM RTC Improper Control of Generation of Code (Code Injection) Vulnerability
Medium
CVE-2018-1492
IBM RTC Session Fixation Vulnerability
Medium
CVE-2018-1423
IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
Medium
CVE-2018-1521
IBM RTC Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2018-1408
IBM RTC Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2018-1952
IBM RTC Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2018-1983
IBM RTC Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2018-1407
IBM RTC Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium