CVE Vulnerabilities

CVE-2016-0314

Published: Jul 08, 2016 | Modified: Nov 28, 2016
CVSS 3.x
6.5
MEDIUM
Source:
NVD
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
CVSS 2.x
4 MEDIUM
AV:N/AC:L/Au:S/C:N/I:P/A:N
RedHat/V2
RedHat/V3
Ubuntu

The Report Builder and Data Collection Component (DCC) in IBM Jazz Reporting Service (JRS) 5.x before 5.0.2 ifix016 and 6.x before 6.0.1 ifix005 allow remote authenticated users to conduct clickjacking attacks via unspecified vectors.

Affected Software

Name Vendor Start Version End Version
Jazz_reporting_service Ibm 5.0 5.0
Jazz_reporting_service Ibm 5.0.1 5.0.1
Jazz_reporting_service Ibm 5.0.2 5.0.2
Jazz_reporting_service Ibm 6.0 6.0
Jazz_reporting_service Ibm 6.0.1 6.0.1

References