Security Advisory

CVE-2018-1766

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2018-10-29 15:00:00

Last updated 2024-09-16 19:04:13

Assigner ibm

State PUBLISHED

Description

IBM Team Concert (RTC) 5.0 through 5.0.2 and 6.0 through 6.0.5 are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 148620.

← Browse all CVEs View on cve.org ↗