Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The Web Client (aka CQ Web) in IBM Rational ClearQuest 7.1.2.x before 7.1.2.9 and 8.0.0.x before 8.0.0.5 allows remote attackers to obtain sensitive information via unspecified vectors that trigger a SQL error message.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
IBM Rational ClearQuest Web客户端信息泄露漏洞
Vulnerability Description
IBM Rational ClearQuest是美国IBM公司的一套应用程序生命周期管理 (ALM) 软件。该软件为应用程序提供缺陷跟踪、流程定制、实时报告等,从而提高开发周期的可视性和可控性。 IBM Rational ClearQuest早期版本至7.1.2.9以及8.0.0.5版本中存在安全漏洞,该漏洞源于某些未明输入通过在ClearQuest Web (CQ Web)客户端上的OSLC接口系统返回给用户之前没有正确验证。攻击者利用该漏洞在受影响站点上下文中用户浏览器会话中执行任意HTML和脚本代码
CVSS Information
N/A
Vulnerability Type
N/A