CVE-2013-5422

IBM Rational ClearQuest <8.0.0.9 - Info Disclosure

Title source: llm
STIX 2.1

Description

The Web Client in IBM Rational ClearQuest 7.1 through 7.1.2.12, 8.0.0.x before 8.0.0.9, and 8.0.1.x before 8.0.1.2, when a multi-database dataset exists, allows remote attackers to read database names via unspecified vectors.

References (3)

Core 3
Core References
Various Sources vendor-advisory x_refsource_aixapar
http://www-01.ibm.com/support/docview.wss?uid=swg1PM97698
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/87484
Vendor Advisory x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?uid=swg21660036

Scores

EPSS 0.0119
EPSS Percentile 64.2%

Details

CWE
CWE-200
Status published
Products (36)
ibm/rational_clearcase 7.1
ibm/rational_clearcase 7.1.0.1
ibm/rational_clearcase 7.1.0.2
ibm/rational_clearcase 7.1.1
ibm/rational_clearcase 7.1.1.1
ibm/rational_clearcase 7.1.1.2
ibm/rational_clearcase 7.1.1.3
ibm/rational_clearcase 7.1.1.4
ibm/rational_clearcase 7.1.1.5
ibm/rational_clearcase 7.1.1.6
... and 26 more
Published Dec 19, 2013
Tracked Since Feb 18, 2026