CVE-2016-0219
6.5
Vector
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Exploitability: 2.8 / Impact: 3.6
Source: NVD
Description
XML external entity (XXE) vulnerability in IBM Rational Team Concert 3.0 before 3.0.1.6 iFix7 Interim Fix 1, 4.0 before 4.0.7 iFix10, 5.0 before 5.0.2 iFix15, and 6.0 before 6.0.1 iFix4 allows remote authenticated users to cause a denial of service via crafted XML data. IBM X-Force ID: 109693.
Affected (130)
Configuration A
| Vulnerable Software | Affected Versions |
|---|---|
| Version 3.0.1.1 |
Configuration B
| Vulnerable Software | Affected Versions |
|---|---|
| Version 3.0.1.1 |
Configuration C
| Vulnerable Software | Affected Versions |
|---|---|
| Version 4.0.1 |
Configuration D
| Vulnerable Software | Affected Versions |
|---|---|
| Version 3.0.1.1 |
Configuration E
| Vulnerable Software | Affected Versions |
|---|---|
| Version 3.0.1.1 |
Configuration F
| Vulnerable Software | Affected Versions |
|---|---|
| Version 4.0.3 |
Configuration G
| Vulnerable Software | Affected Versions |
|---|---|
| Version 4.0.1 |
Configuration H
| Vulnerable Software | Affected Versions |
|---|---|
| Version 4.0.1 |
References (4)
Source: psirt@us.ibm.com
VDB EntryVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
VDB EntryVendor Advisory
Timeline
No history available yet.