Published: 06/04/2015 Updated: 28/11/2016

CVSS v2 Base Score: 9.4 | Impact Score: 9.2 | Exploitability Score: 10

VMScore: 837

Vector: AV:N/AC:L/Au:N/C:C/I:C/A:N

The MSCAPI/MSCNG interface implementation in GSKit in IBM Rational ClearCase 7.1.2.x prior to 7.1.2.17, 8.0.0.x prior to 8.0.0.14, and 8.0.1.x prior to 8.0.1.7 does not properly generate random numbers, which makes it easier for remote malicious users to defeat cryptographic protection mechanisms via unspecified vectors.

Vulnerable Product	Search on Vulmon	Subscribe to Product
ibm rational clearcase 7.1.2.13
ibm rational clearcase 7.1.2.14
ibm rational clearcase 7.1.2.6
ibm rational clearcase 7.1.2.7
ibm rational clearcase 8.0.0.13
ibm rational clearcase 8.0.0.2
ibm rational clearcase 8.0.0.3
ibm rational clearcase 8.0.1.6
ibm rational clearcase 8.0.1.5
ibm rational clearcase 7.1.2.1
ibm rational clearcase 7.1.2.10
ibm rational clearcase 7.1.2.2
ibm rational clearcase 7.1.2.3
ibm rational clearcase 8.0.0.1
ibm rational clearcase 8.0.0.10
ibm rational clearcase 8.0.0.6
ibm rational clearcase 8.0.0.7
ibm rational clearcase 8.0.1.2
ibm rational clearcase 8.0.1.1
ibm rational clearcase 7.1.2
ibm rational clearcase 7.1.2.15
ibm rational clearcase 7.1.2.16
ibm rational clearcase 7.1.2.9
ibm rational clearcase 8.0.0
ibm rational clearcase 8.0.0.4
ibm rational clearcase 8.0.0.5
ibm rational clearcase 8.0.1.4
ibm rational clearcase 8.0.1.3
ibm rational clearcase 7.1.2.11
ibm rational clearcase 7.1.2.12
ibm rational clearcase 7.1.2.4
ibm rational clearcase 7.1.2.5
ibm rational clearcase 8.0.0.11
ibm rational clearcase 8.0.0.12
ibm rational clearcase 8.0.0.8
ibm rational clearcase 8.0.0.9
ibm rational clearcase 8.0.1

CWE-310 http://www-01.ibm.com/support/docview.wss?uid=swg21698893 http://www.securitytracker.com/id/1032026 http://www.securityfocus.com/bid/73915 https://nvd.nist.gov

CVE-2014-6221

Vulnerability Summary

Vulnerability Trend

References

Vulmon Search

About

Products

Connect