5.5

CVE-2012-2164

The Web client in IBM Rational ClearQuest 7.1.x before 7.1.2.7 and 8.x before 8.0.0.3 allows remote authenticated users to bypass intended access restrictions, and use the Site Administration menu to modify system settings, via a parameter-tampering attack.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
IbmRational Clearquest Version7.1.1.1
IbmRational Clearquest Version7.1.1.2
IbmRational Clearquest Version7.1.1.3
IbmRational Clearquest Version7.1.1.4
IbmRational Clearquest Version7.1.1.5
IbmRational Clearquest Version7.1.1.6
IbmRational Clearquest Version7.1.1.7
IbmRational Clearquest Version7.1.1.8
IbmRational Clearquest Version7.1.2
IbmRational Clearquest Version7.1.2.1
IbmRational Clearquest Version7.1.2.2
IbmRational Clearquest Version7.1.2.3
IbmRational Clearquest Version7.1.2.4
IbmRational Clearquest Version7.1.2.5
IbmRational Clearquest Version7.1.2.6
IbmRational Clearquest Version8.0
IbmRational Clearquest Version8.0.0.1
IbmRational Clearquest Version8.0.0.2
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 1.11% 0.615
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5.5 8 4.9
AV:N/AC:L/Au:S/C:P/I:P/A:N
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://www-01.ibm.com/support/docview.wss?uid=swg1PM62735
Vendor Advisory
http://www.ibm.com/support/docview.wss?uid=swg21606318
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/75039