Lucene search
HistoryDec 20, 2012 - 12:02 p.m.
CVE-2012-4839
cve-2012-4839
ibm
rational clearquest
oslc
interface
phishing
vulnerability
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
6.6 Medium
AI Score
Confidence
Low
0.002 Low
EPSS
Percentile
61.1%
The OSLC interface in the Web Client (aka CQ Web) in IBM Rational ClearQuest 7.1.2.x before 7.1.2.9 and 8.0.0.x before 8.0.0.5 allows remote attackers to conduct phishing attacks via a FRAME element.
Affected configurations
Node
ibmrational_clearquestMatch7.1.2
ORibmrational_clearquestMatch7.1.2.1
ORibmrational_clearquestMatch7.1.2.2
ORibmrational_clearquestMatch7.1.2.3
ORibmrational_clearquestMatch7.1.2.4
ORibmrational_clearquestMatch7.1.2.5
ORibmrational_clearquestMatch7.1.2.6
ORibmrational_clearquestMatch7.1.2.7
ORibmrational_clearquestMatch7.1.2.8
Node
ibmrational_clearquestMatch8.0.0
ORibmrational_clearquestMatch8.0.0.1
ORibmrational_clearquestMatch8.0.0.2
ORibmrational_clearquestMatch8.0.0.3
ORibmrational_clearquestMatch8.0.0.4
Related
cvelist
cvelist
CVE-2012-4839
2012-12-20 11:00:00
nvd
nvd
CVE-2012-4839
2012-12-20 12:02:17
prion
prion
Design/Logic Flaw
2012-12-20 12:02:00
ibm
ibm
nessus
nessus
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
6.6 Medium
AI Score
Confidence
Low
0.002 Low
EPSS
Percentile
61.1%
Related for CVE-2012-4839