Vulnerability Details CVE-2014-0841
IBM Rational Focal Point 6.4.0, 6.4.1, 6.5.1, 6.5.2, and 6.6.0 use a weak algorithm to hash passwords, which makes it easier for context-dependent attackers to obtain cleartext values via a brute-force attack. IBM X-Force ID: 90704.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 4.3%
CVSS Severity
CVSS v3 Score 5.3
CVSS v2 Score 2.1
References
- https://exchange.xforce.ibmcloud.com/vulnerabilities/90704
- https://www.ibm.com/blogs/psirt/ibm-security-bulletin-weak-password-hash-vulnerability-in-rational-focalpoint-cve-2014-0841/
- https://exchange.xforce.ibmcloud.com/vulnerabilities/90704
- https://www.ibm.com/blogs/psirt/ibm-security-bulletin-weak-password-hash-vulnerability-in-rational-focalpoint-cve-2014-0841/
Products affected by CVE-2014-0841
-
cpe:2.3:a:ibm:rational_focal_point:6.4
-
cpe:2.3:a:ibm:rational_focal_point:6.4.1
-
cpe:2.3:a:ibm:rational_focal_point:6.5.1
-
cpe:2.3:a:ibm:rational_focal_point:6.5.2
-
cpe:2.3:a:ibm:rational_focal_point:6.6