Rational Clearquest Security Vulnerabilities and Issues — Rational Clearquest CVE List

Lucene search

IbmRational Clearquest

3 matches found

CVE•added 2008/03/20 12:44 a.m.•41 views

CVE-2007-4592

Multiple cross-site scripting (XSS) vulnerabilities in the web interface for IBM Rational ClearQuest before 2003.06.16 Patch 2008A, 7.0.0.2_iFix01, and 7.0.1.1_iFix01 allow remote attackers to inject arbitrary web script or HTML via the (1) contextid, (2) username, (3) userNameVal, and (4) schema p...

4.3CVSS5.6AI score0.16226EPSS

CVE•added 2008/03/11 5:44 p.m.•39 views

CVE-2008-1288

IBM Rational ClearQuest 7.0.1.1 and 7.0.0.2 might allow local or remote attackers to obtain sensitive information about users by reading user cookies.

5CVSS5.9AI score0.00464EPSS

CVE•added 2008/03/11 5:44 p.m.•38 views

CVE-2008-1287

IBM Rational ClearQuest 7.0.1.1 and 7.0.0.2 generates different error messages depending on whether the username is valid or invalid, which allows remote attackers to enumerate usernames.

5CVSS6.5AI score0.00503EPSS