Vulnerability Details CVE-2010-4603
IBM Rational ClearQuest 7.0.x before 7.0.1.11, 7.1.1.x before 7.1.1.4, and 7.1.2.x before 7.1.2.1 does not prevent modification of back-reference fields, which allows remote authenticated users to interfere with intended record relationships, and possibly cause a denial of service (loop) or have unspecified other impact, by (1) adding or (2) removing a back reference.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.007
EPSS Ranking 70.4%
CVSS Severity
CVSS v2 Score 6.5
References
- ftp://public.dhe.ibm.com/software/rational/clearquest/7.1.1/7.1.1.4-RATL-RCQ/7.1.1.4-RATL-RCQ.ux.readme
- http://www-01.ibm.com/support/docview.wss?uid=swg1PM22186
- http://www-01.ibm.com/support/docview.wss?uid=swg21125139
- http://www.securityfocus.com/bid/45648
- https://exchange.xforce.ibmcloud.com/vulnerabilities/64439
- ftp://public.dhe.ibm.com/software/rational/clearquest/7.1.1/7.1.1.4-RATL-RCQ/7.1.1.4-RATL-RCQ.ux.readme
- http://www-01.ibm.com/support/docview.wss?uid=swg1PM22186
- http://www-01.ibm.com/support/docview.wss?uid=swg21125139
- http://www.securityfocus.com/bid/45648
- https://exchange.xforce.ibmcloud.com/vulnerabilities/64439
Products affected by CVE-2010-4603
-
cpe:2.3:a:ibm:rational_clearquest:7.0
-
cpe:2.3:a:ibm:rational_clearquest:7.0.0.0
-
cpe:2.3:a:ibm:rational_clearquest:7.0.0.1
-
cpe:2.3:a:ibm:rational_clearquest:7.0.0.2
-
cpe:2.3:a:ibm:rational_clearquest:7.0.0.3
-
cpe:2.3:a:ibm:rational_clearquest:7.0.0.4
-
cpe:2.3:a:ibm:rational_clearquest:7.0.0.5
-
cpe:2.3:a:ibm:rational_clearquest:7.0.0.6
-
cpe:2.3:a:ibm:rational_clearquest:7.0.0.7
-
cpe:2.3:a:ibm:rational_clearquest:7.0.0.8
-
cpe:2.3:a:ibm:rational_clearquest:7.0.0.9
-
cpe:2.3:a:ibm:rational_clearquest:7.0.1
-
cpe:2.3:a:ibm:rational_clearquest:7.0.1.0
-
cpe:2.3:a:ibm:rational_clearquest:7.0.1.1
-
cpe:2.3:a:ibm:rational_clearquest:7.0.1.10
-
cpe:2.3:a:ibm:rational_clearquest:7.0.1.2
-
cpe:2.3:a:ibm:rational_clearquest:7.0.1.3
-
cpe:2.3:a:ibm:rational_clearquest:7.0.1.4
-
cpe:2.3:a:ibm:rational_clearquest:7.0.1.5
-
cpe:2.3:a:ibm:rational_clearquest:7.0.1.6
-
cpe:2.3:a:ibm:rational_clearquest:7.0.1.7
-
cpe:2.3:a:ibm:rational_clearquest:7.0.1.8
-
cpe:2.3:a:ibm:rational_clearquest:7.0.1.9
-
cpe:2.3:a:ibm:rational_clearquest:7.1.1.1
-
cpe:2.3:a:ibm:rational_clearquest:7.1.1.2
-
cpe:2.3:a:ibm:rational_clearquest:7.1.1.3
-
cpe:2.3:a:ibm:rational_clearquest:7.1.2