Description

XML external entity (XXE) vulnerability in IBM Rational Team Concert 3.0 before 3.0.1.6 iFix7 Interim Fix 1, 4.0 before 4.0.7 iFix10, 5.0 before 5.0.2 iFix15, and 6.0 before 6.0.1 iFix4 allows remote authenticated users to cause a denial of service via crafted XML data. IBM X-Force ID: 109693.

Remediation

References

CVE-2016-0219

Related Vulnerabilities

Joomla Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-1599)

WordPress Plugin Easy Registration Forms CSV Injection (2.0.6)

WordPress Plugin Buddy Share It Allusers FB YR Arbitrary File Upload (3.2.8)

WordPress Plugin Disqus Comment System Multiple Cross-Site Request Forgery Vulnerabilities (2.77)

osCommerce Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-43716)

Severity

Medium

Classification

CVE-2016-0219 CWE-611 CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Tags

Missing Update Known Vulnerabilities