Engineering_insights - Vulncode-DB

Repositories	Unknown: This might be proprietary software.
#Vulnerabilities	22

Date	Id	Summary	Products	Score	Patch	Annotated
2021-04-12	CVE-2020-4965	IBM Jazz Team Server products use weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 192422.	Collaborative_lifecycle_management, Doors_next, Engineering_insights, Engineering_lifecycle_management, Engineering_requirements_management_doors_next, Engineering_test_management, Engineering_workflow_management, Rational_engineering_lifecycle_manager, Rational_quality_manager, Rational_team_concert, Removable_media_management, Rhapsody_model_manager	7.5
2021-04-12	CVE-2021-20519	IBM Jazz Team Server products are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 198441.	Collaborative_lifecycle_management, Doors_next, Engineering_insights, Engineering_lifecycle_management, Engineering_requirements_management_doors_next, Engineering_test_management, Engineering_workflow_management, Rational_engineering_lifecycle_manager, Rational_quality_manager, Rational_team_concert, Removable_media_management, Rhapsody_model_manager	5.4