Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ibmIBM89D8E5ECF686768E40AB7C60D3F6AD1F6B2F529295502A594063FDD22924EBD1
HistoryFeb 12, 2019 - 5:00 p.m.

Security Bulletin: IBM Rational ClearCase GIT connector password exposure (CVE-2019-4059)

2019-02-1217:00:01
www.ibm.com
13

EPSS

0.002

Percentile

54.9%

JSON

Summary

The local database password is not properly protected in the ClearCase GIT connector.

Vulnerability Details

CVEID: CVE-2019-4059 DESCRIPTION: The ClearCase GIT connector does not sufficiently protect the document database password. An attacker could obtain the password and gain unauthorized access to the document database.
CVSS Base Score: 7.5
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/156583&gt; for the current score
CVSS Environmental Score*: Undefined
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N)

Affected Products and Versions

IBM Rational ClearCase GIT connector version 1.0.0.0

Remediation/Fixes

The solution is to install a fix that protects the database password.

Apply the relevant fixes as listed in the table below.

Affected Versions

|

Applying the fix

—|—

1.0.0.0

| Install version 1.0.0.1, available at this link .

Workarounds and Mitigations

None

Related

prion 1
cnvd 1
nvd 1
cvelist 1
cve 1
prion
prion
Default credentials
2019-02-15 20:29:00
cnvd
cnvd
IBM Rational ClearCase GIT connector trust management issue vulnerability
2022-04-01 00:00:00
nvd
nvd
CVE-2019-4059
2019-02-15 20:29:00
cvelist
cvelist
CVE-2019-4059
2019-02-15 20:00:00
cve
cve
CVE-2019-4059
2019-02-15 20:29:00

EPSS

0.002

Percentile

54.9%

JSON
Related for 89D8E5ECF686768E40AB7C60D3F6AD1F6B2F529295502A594063FDD22924EBD1
prion1cnvd1nvd1cvelist1cve1