Description

XML external entity (XXE) vulnerability in IBM Rational Team Concert 3.0 before 3.0.1.6 iFix7 Interim Fix 1, 4.0 before 4.0.7 iFix10, 5.0 before 5.0.2 iFix15, and 6.0 before 6.0.1 iFix4 allows remote authenticated users to cause a denial of service via crafted XML data. IBM X-Force ID: 109693.

Remediation

References

CVE-2016-0219

Related Vulnerabilities

TYPO3 Improper Input Validation Vulnerability (CVE-2010-3716)

Liferay DXP Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2025-62240)

WordPress Plugin Vertical News Scroller Unspecified Vulnerability (1.19)

Dolibarr Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2019-25452)

silverstripeCMS Improper Input Validation Vulnerability (CVE-2011-4962)

Severity

Medium

Classification

CVE-2016-0219 CWE-611 CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Tags

Missing Update Known Vulnerabilities