Описание
The ClearQuest Maintenance Tool in IBM Rational ClearQuest 7.0.0 before 7.0.0.4 and 7.0.1 before 7.0.1.3 on Windows allows local users to obtain (1) user and (2) database passwords by using a password revealer utility on a field containing a series of asterisks.
Ссылки
- Vendor Advisory
- PatchVendor Advisory
- Vendor Advisory
- PatchVendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одновременно
cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:*
Одно из
cpe:2.3:a:ibm:rational_clearquest:7.0.0.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:rational_clearquest:7.0.0.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:rational_clearquest:7.0.0.2:*:*:*:*:*:*:*
cpe:2.3:a:ibm:rational_clearquest:7.0.0.3:*:*:*:*:*:*:*
cpe:2.3:a:ibm:rational_clearquest:7.0.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:rational_clearquest:7.0.1.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:rational_clearquest:7.0.1.2:*:*:*:*:*:*:*
EPSS
Процентиль: 20%
0.00065
Низкий
4.4 Medium
CVSS2
Дефекты
CWE-255
Связанные уязвимости
github
больше 3 лет назад
The ClearQuest Maintenance Tool in IBM Rational ClearQuest 7.0.0 before 7.0.0.4 and 7.0.1 before 7.0.1.3 on Windows allows local users to obtain (1) user and (2) database passwords by using a password revealer utility on a field containing a series of asterisks.
EPSS
Процентиль: 20%
0.00065
Низкий
4.4 Medium
CVSS2
Дефекты
CWE-255