Multiple XML external entity (XXE) vulnerabilities in the (1) CCRC WAN Server / CM Server, (2) Perl CC/CQ integration trigger scripts, (3) CMAPI Java interface, (4) ClearCase remote client, and (5) CMI and OSLC-based ClearQuest integrations components in IBM Rational ClearCase 7.1.0.x, 7.1.1.x, 7.1.2 up to and including 7.1.2.13, 8.0 up to and including 8.0.0.10, and 8.0.1 up to and including 8.0.1.3 allow remote malicious users to cause a denial of service or access other servers via crafted XML data. IBM X-Force ID: 92263.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
ibm rational clearcase |