The Remote Client and change management integrations in IBM Rational ClearCase 7.1.x, 8.0.0.x prior to 8.0.0.18, and 8.0.1.x prior to 8.0.1.11 do not properly validate hostnames in X.509 certificates from SSL servers, which allows remote malicious users to spoof servers and obtain sensitive information or modify network traffic via a crafted certificate. IBM X-Force ID: 106715.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
ibm rational clearcase |