Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2014-8925

Overview

Vulnerability Score 6.8 6.8
CVE Id CVE-2014-8925
Last Modified 25 Mar 2015 04:51:54
Published 24 Mar 2015 09:59:12
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2014-8925

Summary

Cross-site request forgery (CSRF) vulnerability in ClearQuest Web in IBM Rational ClearQuest 7.1.x before 7.1.2.17, 8.0.0.x before 8.0.0.14, and 8.0.1.x before 8.0.1.7 allows remote attackers to hijack the authentication of arbitrary users for requests that trigger a logout or insert XSS sequences.

Vulnerable Systems

Application

  • Ibm Rational Clearquest 7.1

  • Ibm Rational Clearquest 7.1.0.1

  • Ibm Rational Clearquest 7.1.0.2

  • Ibm Rational Clearquest 7.1.1

  • Ibm Rational Clearquest 7.1.1.1

  • Ibm Rational Clearquest 7.1.1.2

  • Ibm Rational Clearquest 7.1.1.3

  • Ibm Rational Clearquest 7.1.1.4

  • Ibm Rational Clearquest 7.1.1.5

  • Ibm Rational Clearquest 7.1.1.6

  • Ibm Rational Clearquest 7.1.1.7

  • Ibm Rational Clearquest 7.1.1.8

  • Ibm Rational Clearquest 7.1.1.9

  • Ibm Rational Clearquest 7.1.2

  • Ibm Rational Clearquest 7.1.2.1

  • Ibm Rational Clearquest 7.1.2.10

  • Ibm Rational Clearquest 7.1.2.11

  • Ibm Rational Clearquest 7.1.2.12

  • Ibm Rational Clearquest 7.1.2.13

  • Ibm Rational Clearquest 7.1.2.14

  • Ibm Rational Clearquest 7.1.2.15

  • Ibm Rational Clearquest 7.1.2.2

  • Ibm Rational Clearquest 7.1.2.3

  • Ibm Rational Clearquest 7.1.2.4

  • Ibm Rational Clearquest 7.1.2.5

  • Ibm Rational Clearquest 7.1.2.6

  • Ibm Rational Clearquest 7.1.2.7

  • Ibm Rational Clearquest 7.1.2.8

  • Ibm Rational Clearquest 7.1.2.9

  • Ibm Rational Clearquest 8.0.0

  • Ibm Rational Clearquest 8.0.0.1

  • Ibm Rational Clearquest 8.0.0.10

  • Ibm Rational Clearquest 8.0.0.11

  • Ibm Rational Clearquest 8.0.0.12

  • Ibm Rational Clearquest 8.0.0.2

  • Ibm Rational Clearquest 8.0.0.3

  • Ibm Rational Clearquest 8.0.0.4

  • Ibm Rational Clearquest 8.0.0.5

  • Ibm Rational Clearquest 8.0.0.6

  • Ibm Rational Clearquest 8.0.0.7

  • Ibm Rational Clearquest 8.0.0.8

  • Ibm Rational Clearquest 8.0.0.9

  • Ibm Rational Clearquest 8.0.1

  • Ibm Rational Clearquest 8.0.1.1

  • Ibm Rational Clearquest 8.0.1.2

  • Ibm Rational Clearquest 8.0.1.3

  • Ibm Rational Clearquest 8.0.1.4

  • Ibm Rational Clearquest 8.0.1.5


References

CONFIRM - http://www-01.ibm.com/support/docview.wss?uid=swg21699148


Last Updated: 27 May 2016 11:08:12