Brute-force Vulnerability in IBM Rational ClearQuest Login Form
CVE-2014-3101

Currently unrated

Key Information:

Vendor: IBM
Status: Rational Clearcase
Vendor: CVE Published:; 23 September 2014

What is CVE-2014-3101?

The login mechanism of IBM Rational ClearQuest versions 7.1 and 8.0.x lacks a delay after failed authentication attempts. This flaw enables attackers to execute brute-force attacks more effectively, increasing the risk of unauthorized access to user accounts. Upgrading to patched versions is crucial to mitigate this vulnerability and enhance login security.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/94268

vdb-entryx_refsource_XF

http://www-01.ibm.com/support/docview.wss?uid=swg21682946

x_refsource_CONFIRM

http://www.securitytracker.com/id/1030884

vdb-entryx_refsource_SECTRACK

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 23, 2014
Vulnerability Reserved
Apr 29, 2014

CVE-2014-3101 Data

JSON