Rational Clearcase@8.0.0 Security Vulnerabilities and Issues — Rational Clearcase@8.0.0 CVE List

Lucene search

IbmRational Clearcase8.0.0

4 matches found

CVE•added 2015/03/25 1:59 a.m.•41 views

CVE-2014-6134

IBM Rational ClearCase 8.0.0 before 8.0.0.14 and 8.0.1 before 8.0.1.7, when Installation Manager before 1.8.2 is used, retains cleartext server passwords in process memory throughout the installation procedure, which might allow local users to obtain sensitive information by leveraging access to th...

1.2CVSS5.8AI score0.00118EPSS

CVE•added 2014/09/23 8:55 p.m.•38 views

CVE-2014-3090

IBM Rational ClearCase 7.1 before 7.1.2.15, 8.0.0 before 8.0.0.12, and 8.0.1 before 8.0.1.5 allows remote attackers to cause a denial of service (memory consumption) via a crafted XML document containing a large number of nested entity references, a similar issue to CVE-2003-1564.

5CVSS6.8AI score0.00885EPSS

CVE•added 2014/03/21 10:55 a.m.•37 views

CVE-2014-0829

Multiple buffer overflows in IBM Rational ClearCase 7.x before 7.1.2.13, 8.0.0.x before 8.0.0.10, and 8.0.1.x before 8.0.1.3 allow remote authenticated users to obtain privileged access via unspecified vectors.

6.5CVSS6.2AI score0.00518EPSS

CVE•added 2015/04/06 12:59 a.m.•35 views

CVE-2014-6221

The MSCAPI/MSCNG interface implementation in GSKit in IBM Rational ClearCase 7.1.2.x before 7.1.2.17, 8.0.0.x before 8.0.0.14, and 8.0.1.x before 8.0.1.7 does not properly generate random numbers, which makes it easier for remote attackers to defeat cryptographic protection mechanisms via unspecifi...

9.4CVSS6.2AI score0.00631EPSS