Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The Web client in IBM Rational ClearQuest 7.1.x before 7.1.2.7 and 8.x before 8.0.0.3 allows remote authenticated users to bypass intended access restrictions, and use the Site Administration menu to modify system settings, via a parameter-tampering attack.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
IBM Rational ClearQuest web客户端安全绕过漏洞
Vulnerability Description
IBM Rational ClearQuest是美国IBM公司的一套应用程序生命周期管理 (ALM) 软件。该软件为应用程序提供缺陷跟踪、流程定制、实时报告等,从而提高开发周期的可视性和可控性。 IBM Rational ClearQuest 7.1.2.7之前的7.1.x版本和8.0.0.3之前的8.x版本中的web客户端中存在漏洞。远程认证用户可利用该漏洞通过参数篡改攻击绕过目地访问限制,并使用Site Administration菜单修改系统设置。
CVSS Information
N/A
Vulnerability Type
N/A