Vulnerabilities > IBM > Rational Clearquest > Low

DATE CVE VULNERABILITY TITLE RISK
2016-01-02 CVE-2015-4996 Information Exposure vulnerability in IBM Rational Clearquest
IBM Rational ClearQuest 7.1.x and 8.0.0.x before 8.0.0.17 and 8.0.1.x before 8.0.1.10 allows local users to spoof database servers and discover credentials via unspecified vectors.
local
low complexity
ibm CWE-200
3.6
3.6
2012-08-17 CVE-2012-2165 Information Exposure vulnerability in IBM Rational Clearquest
IBM Rational ClearQuest 7.1.x before 7.1.2.7 and 8.x before 8.0.0.3, when ClearQuest Authentication is enabled, allows remote authenticated users to read password hashes via a user query.
network
ibm CWE-200
3.5
3.5
2012-08-17 CVE-2012-2169 Cross-Site Scripting vulnerability in IBM Rational Clearquest
Cross-site scripting (XSS) vulnerability in the file-upload functionality in the Web client in IBM Rational ClearQuest 7.1.x before 7.1.2.7 allows remote authenticated users to inject arbitrary web script or HTML via the File Description field.
network
ibm CWE-79
3.5
3.5
2012-08-17 CVE-2012-2205 Cross-Site Scripting vulnerability in IBM Rational Clearquest
Cross-site scripting (XSS) vulnerability in IBM Rational ClearQuest 7.1.x before 7.1.2.7 and 8.x before 8.0.0.3 allows remote authenticated users to inject arbitrary web script or HTML via a workspace query.
network
ibm CWE-79
3.5
3.5