Rational Clearquest@7.1.1 Security Vulnerabilities and Issues — Rational Clearquest@7.1.1 CVE List

Lucene search

IbmRational Clearquest7.1.1

4 matches found

CVE•added 2012/04/22 6:55 p.m.•143 views

CVE-2012-0708

Heap-based buffer overflow in the Ole API in the CQOle ActiveX control in cqole.dll in IBM Rational ClearQuest 7.1.1 before 7.1.1.9, 7.1.2 before 7.1.2.6, and 8.0.0 before 8.0.0.2 allows remote attackers to execute arbitrary code via a crafted web page that leverages a RegisterSchemaRepoFromFileByD...

9.3CVSS7.8AI score0.66566EPSS

CVE•added 2015/03/25 1:59 a.m.•43 views

CVE-2014-8925

Cross-site request forgery (CSRF) vulnerability in ClearQuest Web in IBM Rational ClearQuest 7.1.x before 7.1.2.17, 8.0.0.x before 8.0.0.14, and 8.0.1.x before 8.0.1.7 allows remote attackers to hijack the authentication of arbitrary users for requests that trigger a logout or insert XSS sequences.

6.8CVSS6.6AI score0.00148EPSS

CVE•added 2013/10/01 12:55 a.m.•37 views

CVE-2013-3041

The Web Client in IBM Rational ClearQuest 7.1 before 7.1.2.12, 8.0 before 8.0.0.8, and 8.0.1 before 8.0.1.1 allows remote attackers to obtain sensitive information from the client-server data stream via unspecified vectors associated with a "JSON hijacking attack."

4.3CVSS6AI score0.00207EPSS

CVE•added 2016/01/02 5:59 a.m.•34 views

CVE-2015-4996

IBM Rational ClearQuest 7.1.x and 8.0.0.x before 8.0.0.17 and 8.0.1.x before 8.0.1.10 allows local users to spoof database servers and discover credentials via unspecified vectors.

5.1CVSS4.8AI score0.00049EPSS