XML external entity (XXE) vulnerability in IBM Rational Team Concert 3.0 before 3.0.1.6 iFix7 Interim Fix 1, 4.0 before 4.0.7 iFix10, 5.0 before 5.0.2 iFix15, and 6.0 before 6.0.1 iFix4 allows remote authenticated users to cause a denial of service via crafted XML data. IBM X-Force ID: 109693.
References
Link | Resource |
---|---|
http://www-01.ibm.com/support/docview.wss?uid=swg21983720 | Vendor Advisory |
https://exchange.xforce.ibmcloud.com/vulnerabilities/109693 | VDB Entry Vendor Advisory |
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
Configuration 3 (hide)
|
Configuration 4 (hide)
|
Configuration 5 (hide)
|
Configuration 6 (hide)
|
Configuration 7 (hide)
|
Configuration 8 (hide)
|
History
No history.
Information
Published : 2018-01-16 19:29
Updated : 2024-02-28 16:04
NVD link : CVE-2016-0219
Mitre link : CVE-2016-0219
CVE.ORG link : CVE-2016-0219
JSON object : View
Products Affected
ibm
- rational_engineering_lifecycle_manager
- rational_doors_next_generation
- rational_requirements_composer
- rational_software_architect_design_manager
- rational_rhapsody_design_manager
- rational_collaborative_lifecycle_management
- rational_quality_manager
- rational_team_concert
CWE
CWE-611
Improper Restriction of XML External Entity Reference