| Max CVSS | 6.0 | Min CVSS | 3.5 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2016-6040 | 6.0 |
IBM Jazz Foundation could allow an authenticated user to take over a previously logged in user due to session expiration not being enforced.
|
08-02-2017 - 17:03 | 01-02-2017 - 20:59 | |
| CVE-2016-2987 | 4.0 |
An undisclosed vulnerability in CLM applications may result in some administrative deployment parameters being shown to an attacker.
|
07-02-2017 - 16:32 | 01-02-2017 - 20:59 | |
| CVE-2016-6030 | 3.5 |
IBM Jazz Foundation is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted sessio
|
07-02-2017 - 16:20 | 01-02-2017 - 20:59 | |
| CVE-2016-6061 | 3.5 |
IBM Jazz Foundation is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted sessio
|
07-02-2017 - 16:20 | 01-02-2017 - 20:59 | |
| CVE-2016-6028 | 4.0 |
IBM Jazz technology based products might allow an attacker to view work item titles that they do not have privilege to view.
|
07-02-2017 - 16:18 | 01-02-2017 - 20:59 |