XML External Entity Vulnerabilities in IBM Rational ClearQuest
CVE-2014-0950
7.1HIGH
Summary
Multiple vulnerabilities related to XML external entities exist in IBM Rational ClearQuest components, which allow attackers to send specially crafted XML data. This can lead to a denial of service or unauthorized access to other servers. Affected versions span several releases of Rational ClearQuest, emphasizing the importance of applying security measures to mitigate potential exploitation.
References
CVSS V3.1
Score:
7.1
Severity:
HIGH
Confidentiality:
Low
Integrity:
None
Availability:
Low
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged
Timeline
Vulnerability published
Vulnerability Reserved