Design/Logic Flaw

2012-12-2012:02:00

PRIOn knowledge base

www.prio-n.com

6.9 Medium

AI Score

Confidence

Low

0.002 Low

EPSS

Percentile

61.1%

JSON

The OSLC interface in the Web Client (aka CQ Web) in IBM Rational ClearQuest 7.1.2.x before 7.1.2.9 and 8.0.0.x before 8.0.0.5 allows remote attackers to conduct phishing attacks via a FRAME element.

CPENameOperatorVersion
rational_clearquesteq7.1.2.2
rational_clearquesteq7.1.2.1
rational_clearquesteq7.1.2.6
rational_clearquesteq7.1.2
rational_clearquesteq7.1.2.8
rational_clearquesteq7.1.2.3
rational_clearquesteq7.1.2.5
rational_clearquesteq7.1.2.7
rational_clearquesteq7.1.2.4
rational_clearquesteq8.0.0.4

Name	Operator	Version
rational_clearquest	eq	7.1.2.2
rational_clearquest	eq	7.1.2.1
rational_clearquest	eq	7.1.2.6
rational_clearquest	eq	7.1.2
rational_clearquest	eq	7.1.2.8
rational_clearquest	eq	7.1.2.3
rational_clearquest	eq	7.1.2.5
rational_clearquest	eq	7.1.2.7
rational_clearquest	eq	7.1.2.4
rational_clearquest	eq	8.0.0.4