CVE-2014-3106

IBM Rational Clearcase - Authentication Bypass

Title source: rule

Description

IBM Rational ClearQuest 7.1 before 7.1.2.15, 8.0.0 before 8.0.0.12, and 8.0.1 before 8.0.1.5 does not properly implement the Local Access Only protection mechanism, which allows remote attackers to bypass authentication and read files via the Help Server Administration feature.

References (2)

Scores

EPSS 0.0026
EPSS Percentile 48.9%

Classification

CWE
CWE-287
Status draft

Affected Products (44)

ibm/rational_clearcase
ibm/rational_clearcase
ibm/rational_clearcase
ibm/rational_clearcase
ibm/rational_clearcase
ibm/rational_clearcase
ibm/rational_clearcase
ibm/rational_clearcase
ibm/rational_clearcase
ibm/rational_clearcase
ibm/rational_clearcase
ibm/rational_clearcase
ibm/rational_clearcase
ibm/rational_clearcase
ibm/rational_clearcase
... and 29 more

Timeline

Published Sep 23, 2014
Tracked Since Feb 18, 2026