Back-Reference Modification Vulnerability in IBM Rational ClearQuest
CVE-2010-4603

Currently unrated

Key Information:

Vendor: IBM
Status: Rational Clearquest
Vendor: CVE Published:; 29 December 2010

Summary

IBM Rational ClearQuest versions 7.0.x prior to 7.0.1.11, 7.1.1.x prior to 7.1.1.4, and 7.1.2.x prior to 7.1.2.1 are susceptible to a vulnerability that allows remote authenticated users to modify back-reference fields. This flaw permits interference with the intended record relationships, potentially leading to unintended consequences such as loops or other unspecified impacts caused by adding or removing a back reference.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/64439

vdb-entryx_refsource_XF

http://www-01.ibm.com/support/docview.wss?uid=swg1PM22186

vendor-advisoryx_refsource_AIXAPAR

http://www-01.ibm.com/support/docview.wss?uid=swg21125139

x_refsource_CONFIRM

Timeline

Vulnerability published
Dec 29, 2010
Vulnerability Reserved
Dec 29, 2010