CSRF Vulnerability in IBM Rational ClearQuest Web Client
CVE-2013-0598

Currently unrated

Key Information:

Vendor: IBM
Status: Rational Clearquest
Vendor: CVE Published:; 28 September 2013

Summary

A cross-site request forgery (CSRF) vulnerability exists in the Web Client of IBM Rational ClearQuest versions prior to 7.1.2.12, 8.0.0.8, and 8.0.1.1. This flaw enables remote attackers to exploit the system by hijacking the authentication of users, potentially allowing unauthorized actions to be performed on behalf of legitimate users. It is crucial for organizations using affected versions to implement the appropriate patches and safeguard against such vulnerabilities.

References

http://www-01.ibm.com/support/docview.wss?uid=swg1PM88185

vendor-advisoryx_refsource_AIXAPAR

https://exchange.xforce.ibmcloud.com/vulnerabilities/83611

vdb-entryx_refsource_XF

http://www-01.ibm.com/support/docview.wss?uid=swg21648665

x_refsource_CONFIRM

Timeline

Vulnerability published
Sep 28, 2013
Vulnerability Reserved
Dec 16, 2012