Information Disclosure in IBM Rational ClearQuest
CVE-2009-2212

Currently unrated

Key Information:

Vendor
IBM
Status
Rational Clearquest
Vendor
CVE Published:
25 June 2009

Summary

The CQWeb server in IBM Rational ClearQuest versions prior to 7.0.0.6 and 7.0.1.5 presents a significant risk as it allows attackers to exploit unspecified vectors for discovering sensitive information, including usernames and passwords. This vulnerability can lead to unauthorized access to user accounts, potentially compromising system integrity and data confidentiality.

References

http://secunia.com/advisories/35564
third-party-advisoryx_refsource_SECUNIA
http://www-01.ibm.com/support/docview.wss?uid=swg1PK77030
vendor-advisoryx_refsource_AIXAPAR
http://www.securitytracker.com/id?1022456
vdb-entryx_refsource_SECTRACK

Timeline

  • Vulnerability Reserved

  • Vulnerability published

.