Information Disclosure in IBM Rational ClearQuest
CVE-2009-2212

Currently unrated

Key Information:

Vendor: IBM
Status: Rational Clearquest
Vendor: CVE Published:; 25 June 2009

What is CVE-2009-2212?

The CQWeb server in IBM Rational ClearQuest versions prior to 7.0.0.6 and 7.0.1.5 presents a significant risk as it allows attackers to exploit unspecified vectors for discovering sensitive information, including usernames and passwords. This vulnerability can lead to unauthorized access to user accounts, potentially compromising system integrity and data confidentiality.

References

http://secunia.com/advisories/35564

third-party-advisoryx_refsource_SECUNIA

http://www-01.ibm.com/support/docview.wss?uid=swg1PK77030

vendor-advisoryx_refsource_AIXAPAR

http://www.securitytracker.com/id?1022456

vdb-entryx_refsource_SECTRACK

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Jun 25, 2009