{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-06-23T11:39:16.563","vulnerabilities":[{"cve":{"id":"CVE-2017-1516","sourceIdentifier":"psirt@us.ibm.com","published":"2018-01-26T21:29:00.570","lastModified":"2026-06-17T01:14:30.120","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"IBM Doors Web Access 9.5 and 9.6 could allow a remote attacker to hijack the clicking action of the victim. By persuading a victim to visit a malicious Web site, a remote attacker could exploit this vulnerability to hijack the victim's click actions and possibly launch further attacks against the victim. IBM X-Force ID: 129826."},{"lang":"es","value":"IBM Doors Web Access 9.5 y 9.6 podría permitir que un atacante remoto realizase un secuestro de clic a la víctima. Al persuadir a una víctima para que visite un sitio web malicioso, un atacante remoto podría explotar esta vulnerabilidad para secuestrar las acciones de clicado de la víctima y, probablemente, lanzar más ataques contra la víctima. IBM X-Force ID: 129826."}],"affected":[{"source":"psirt@us.ibm.com","affectedData":[{"vendor":"IBM","product":"Rational DOORS","versions":[{"version":"9.5","status":"affected"},{"version":"9.5.0.1","status":"affected"},{"version":"9.5.1","status":"affected"},{"version":"9.5.1.1","status":"affected"},{"version":"9.5.1.2","status":"affected"},{"version":"9.5.2","status":"affected"},{"version":"9.5.2.1","status":"affected"},{"version":"9.6","status":"affected"},{"version":"9.5.0.2","status":"affected"},{"version":"9.5.0.3","status":"affected"},{"version":"9.5.1.3","status":"affected"},{"version":"9.5.1.4","status":"affected"},{"version":"9.5.2.2","status":"affected"},{"version":"9.5.2.3","status":"affected"},{"version":"9.6.0.1","status":"affected"},{"version":"9.6.0.2","status":"affected"},{"version":"9.6.1","status":"affected"},{"version":"9.6.1.1","status":"affected"},{"version":"9.5.0.4","status":"affected"},{"version":"9.5.1.5","status":"affected"},{"version":"9.5.2.4","status":"affected"},{"version":"9.6.0.3","status":"affected"},{"version":"9.6.1.2","status":"affected"},{"version":"9.6.1.3","status":"affected"},{"version":"9.6.1.4","status":"affected"},{"version":"9.5.0.5","status":"affected"},{"version":"9.5.1.6","status":"affected"},{"version":"9.5.2.5","status":"affected"},{"version":"9.6.0.4","status":"affected"},{"version":"9.5.0.6","status":"affected"},{"version":"9.5.1.7","status":"affected"},{"version":"9.5.2.6","status":"affected"},{"version":"9.6.0.5","status":"affected"},{"version":"9.6.1.5","status":"affected"},{"version":"9.6.1.6","status":"affected"},{"version":"9.6.1.7","status":"affected"},{"version":"9.5.0.7","status":"affected"},{"version":"9.5.1.8","status":"affected"},{"version":"9.5.2.7","status":"affected"},{"version":"9.6.0.6","status":"affected"},{"version":"9.6.1.8","status":"affected"},{"version":"9.6.1.9","status":"affected"}]}]}],"metrics":{"cvssMetricV30":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.0","vectorString":"CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N","baseScore":5.4,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.3,"impactScore":2.7}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:M/Au:S/C:N/I:P/A:N","baseScore":3.5,"accessVector":"NETWORK","accessComplexity":"MEDIUM","authentication":"SINGLE","confidentialityImpact":"NONE","integrityImpact":"PARTIAL","availabilityImpact":"NONE"},"baseSeverity":"LOW","exploitabilityScore":6.8,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":true}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-20"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:engineering_requirements_management_doors:*:*:*:*:*:*:*:*","versionStartIncluding":"9.5.0.0","versionEndIncluding":"9.5.0.7","matchCriteriaId":"96E0933B-B5DE-4D2D-A618-399EDCA60BEC"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:engineering_requirements_management_doors:*:*:*:*:*:*:*:*","versionStartIncluding":"9.5.1.0","versionEndIncluding":"9.5.1.8","matchCriteriaId":"F5CC40FB-5AFC-4170-87AA-3EA32BC005AD"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:engineering_requirements_management_doors:*:*:*:*:*:*:*:*","versionStartIncluding":"9.5.2.0","versionEndIncluding":"9.5.2.7","matchCriteriaId":"A5749236-FBDA-4CB8-9B0A-B14E74F5D07C"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:engineering_requirements_management_doors:*:*:*:*:*:*:*:*","versionStartIncluding":"9.6.0.0","versionEndIncluding":"9.6.0.6","matchCriteriaId":"DC96FBA4-2236-4ABF-AA1F-655A00D79F56"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:engineering_requirements_management_doors:*:*:*:*:*:*:*:*","versionStartIncluding":"9.6.1.0","versionEndIncluding":"9.6.1.9","matchCriteriaId":"8E068BAB-D96A-49D0-AE8C-049D76F8CF17"}]}]}],"references":[{"url":"http://www.ibm.com/support/docview.wss?uid=swg22012789","source":"psirt@us.ibm.com","tags":["Patch","Vendor Advisory"]},{"url":"http://www.securityfocus.com/bid/102867","source":"psirt@us.ibm.com","tags":["Third Party Advisory","VDB Entry"]},{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/129826","source":"psirt@us.ibm.com","tags":["VDB Entry","Vendor Advisory"]},{"url":"http://www.ibm.com/support/docview.wss?uid=swg22012789","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Vendor Advisory"]},{"url":"http://www.securityfocus.com/bid/102867","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/129826","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["VDB Entry","Vendor Advisory"]}]}}]}