CVE-2013-3041IBM Rational Clearquest vulnerability

3 documents3 sources
Severity
4.3MEDIUMNVD
EPSS
0.2%
top 56.85%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
IBM Rational Clearquest
Timeline
PublishedOct 1
Latest updateMay 17

Description

The Web Client in IBM Rational ClearQuest 7.1 before 7.1.2.12, 8.0 before 8.0.0.8, and 8.0.1 before 8.0.1.1 allows remote attackers to obtain sensitive information from the client-server data stream via unspecified vectors associated with a "JSON hijacking attack."

CVSS vector

AV:N/AC:M/C:P/I:N/A:NExploitability: 8.6 | Impact: 2.9

Affected Packages1 packages

NVDibm/rational_clearquest34 versions+33

🔴Vulnerability Details

2
GHSA
GHSA-hvp4-qh6p-2h9g: The Web Client in IBM Rational ClearQuest 72022-05-17
CVEList
CVE-2013-3041: The Web Client in IBM Rational ClearQuest 72013-10-01
CVE-2013-3041 — IBM Rational Clearquest vulnerability | cvebase