IBM Rational ClearQuest 8.0.0.0

CPE Details

IBM Rational ClearQuest 8.0.0.0
ibm
rational_clearquest
8.0.0.0
2018-10-10
14h47 +00:00
2018-10-10
14h47 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:ibm:rational_clearquest:8.0.0.0:*:*:*:*:*:*:*

Informations

Vendor

ibm

Product

rational_clearquest

Version

8.0.0.0

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2016-2922 2018-08-13 16h00 +00:00 IBM Rational ClearQuest 8.0 through 8.0.1.9 and 9.0 through 9.0.1.3 (CQ OSLC linkages, EmailRelay) fails to check the SSL certificate against the requested hostname. It is subject to a man-in-the-middle attack with an impersonating server observing all the data transmitted to the real server. IBM X-Force ID: 113353.
5.9
Medium
CVE-2014-0950 2018-04-20 19h00 +00:00 Multiple XML external entity (XXE) vulnerabilities in (1) CQWeb / CM Server, (2) ClearQuest Native client, (3) ClearQuest Eclipse client, and (4) ClearQuest Eclipse Designer components in IBM Rational ClearQuest 7.1.1 through 7.1.1.9, 7.1.2 through 7.1.2.13, 8.0.0 through 8.0.0.10, and 8.0.1 through 8.0.1.3 allow remote attackers to cause a denial of service or access other servers via crafted XML data. IBM X-Force ID: 92623.
7.1
High
CVE-2007-4592 2008-03-19 23h00 +00:00 Multiple cross-site scripting (XSS) vulnerabilities in the web interface for IBM Rational ClearQuest before 2003.06.16 Patch 2008A, 7.0.0.2_iFix01, and 7.0.1.1_iFix01 allow remote attackers to inject arbitrary web script or HTML via the (1) contextid, (2) username, (3) userNameVal, and (4) schema parameters to the login component.
4.3