CVE-2016-9694

EPSS 0.23% · P45 Updated Feb 21, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2016-9694

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

IBM Rhapsody DM 4.0, 5.0, and 6.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM Reference #: 1999960.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

IBM Rational Rhapsody Design Manager 跨站脚本漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

IBM Rational Rhapsody Design Manager是美国IBM公司的一套协作设计管理软件。该软件支持使用具有基于Web的访问的中央系统存储库存储、共享、搜索和管理设计模型以及软件自动化的设计评审等。 IBM Rational Rhapsody Design Manager中存在跨站脚本漏洞。远程攻击者可利用该漏洞在Web UI中注入任意的JavaScript代码，泄露信任会话中的证书。以下版本受到影响：IBM Rational Rhapsody Design Manager 4.0版

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
IBM Corporation	Rational Rhapsody Design Manager	4.0.2	-

II. Public POCs for CVE-2016-9694

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2016-9694

请登录查看更多情报信息。

http://www.ibm.com/support/docview.wss?uid=swg21999960x_refsource_CONFIRM
http://www.securityfocus.com/bid/96825vdb-entryx_refsource_BID
https://nvd.nist.gov/vuln/detail/CVE-2016-9694

Same Patch Batch · IBM Corporation · 2017-03-20 · 10 CVEs total

CVE-2016-2981		IBM Jazz Team Server 安全漏洞
CVE-2016-8973		IBM Rational Rhapsody Design Manager 输入验证漏洞
CVE-2016-9696		IBM Rational Rhapsody Design Manager 输入验证漏洞
CVE-2016-9697		IBM Rational Rhapsody Design Manager 信息泄露漏洞
CVE-2017-1134		IBM Tivoli System Automation for Multiplatforms 权限许可和访问控制问题漏洞
CVE-2017-1145		IBM WebSphere MQ 资源管理错误漏洞
CVE-2017-1146		IBM Content Navigator 跨站脚本漏洞
CVE-2017-1151		IBM WebSphere Application Server 权限许可和访问控制问题漏洞
CVE-2017-1155		IBM Algorithmics One-Algo Risk Application 安全漏洞

IV. Related Vulnerabilities

Same product: Rational Rhapsody Design Manager

Same vendor: IBM Corporation

V. Comments for CVE-2016-9694

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2016-9694

I. Basic Information for CVE-2016-9694

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2016-9694

III. Intelligence Information for CVE-2016-9694

Same Patch Batch · IBM Corporation · 2017-03-20 · 10 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2016-9694

Leave a comment