Vulnerabilities > IBM > Rational Clearquest > Medium

DATE CVE VULNERABILITY TITLE RISK
2024-07-17 CVE-2024-28796 Unspecified vulnerability in IBM Rational Clearquest
IBM ClearQuest (CQ) 9.1 through 9.1.0.6 is vulnerable to stored cross-site scripting.
network
low complexity
ibm
5.4
2018-08-13 CVE-2016-2922 Improper Certificate Validation vulnerability in IBM Rational Clearquest
IBM Rational ClearQuest 8.0 through 8.0.1.9 and 9.0 through 9.0.1.3 (CQ OSLC linkages, EmailRelay) fails to check the SSL certificate against the requested hostname.
network
high complexity
ibm CWE-295
5.9
2016-01-02 CVE-2015-4996 Information Exposure vulnerability in IBM Rational Clearquest
IBM Rational ClearQuest 7.1.x and 8.0.0.x before 8.0.0.17 and 8.0.1.x before 8.0.1.10 allows local users to spoof database servers and discover credentials via unspecified vectors.
local
high complexity
ibm CWE-200
5.1