Rational Clearquest@8.0 Security Vulnerabilities and Issues — Rational Clearquest@8.0 CVE List

Lucene search

IbmRational Clearquest8.0

3 matches found

CVE•added 2012/08/17 8:55 p.m.•48 views

CVE-2012-0744

IBM Rational ClearQuest 7.1.x through 7.1.2.7 and 8.x through 8.0.0.3 allows remote attackers to obtain potentially sensitive information via a request to a (1) snoop, (2) hello, (3) ivt/, (4) hitcount, (5) HitCount.jsp, (6) HelloHTMLError.jsp, (7) HelloHTML.jsp, (8) HelloVXMLError.jsp, (9) HelloVX...

5CVSS6.1AI score0.05964EPSS

CVE•added 2012/05/14 10:55 p.m.•43 views

CVE-2011-1390

SQL injection vulnerability in the Maintenance tool in IBM Rational ClearQuest 7.1.1.x before 7.1.1.9, 7.1.2.x before 7.1.2.6, and 8.x before 8.0.0.2 allows remote attackers to execute arbitrary SQL commands by leveraging an error in the user-database upgrade feature.

7.5CVSS8.4AI score0.00658EPSS

CVE•added 2012/08/17 8:55 p.m.•36 views

CVE-2012-2164

The Web client in IBM Rational ClearQuest 7.1.x before 7.1.2.7 and 8.x before 8.0.0.3 allows remote authenticated users to bypass intended access restrictions, and use the Site Administration menu to modify system settings, via a parameter-tampering attack.

5.5CVSS6.1AI score0.00154EPSS