CVE-2013-0598

Currently unrated

Key Information:

Vendor: IBM
Status: Rational Clearquest
Vendor: CVE Published:; 28 September 2013

Summary

Cross-site request forgery (CSRF) vulnerability in the Web Client in IBM Rational ClearQuest 7.1 before 7.1.2.12, 8.0 before 8.0.0.8, and 8.0.1 before 8.0.1.1 allows remote attackers to hijack the authentication of arbitrary users.

References

http://www-01.ibm.com/support/docview.wss?uid=swg1PM88185

vendor-advisoryx_refsource_AIXAPAR

https://exchange.xforce.ibmcloud.com/vulnerabilities/83611

vdb-entryx_refsource_XF

http://www-01.ibm.com/support/docview.wss?uid=swg21648665

x_refsource_CONFIRM

Timeline

Vulnerability published
Sep 28, 2013
Vulnerability Reserved
Dec 16, 2012