IBM Rational ClearQuest 7.1 before 7.1.2.15, 8.0.0 before 8.0.0.12, and 8.0.1 before 8.0.1.5 does not properly implement the Local Access Only protection mechanism, which allows remote attackers to bypass authentication and read files via the Help Server Administration feature.
When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Rational_clearcase | Ibm | 7.1 (including) | 7.1 (including) |
| Rational_clearcase | Ibm | 7.1.0.1 (including) | 7.1.0.1 (including) |
| Rational_clearcase | Ibm | 7.1.0.2 (including) | 7.1.0.2 (including) |
| Rational_clearcase | Ibm | 7.1.1 (including) | 7.1.1 (including) |
| Rational_clearcase | Ibm | 7.1.1.1 (including) | 7.1.1.1 (including) |
| Rational_clearcase | Ibm | 7.1.1.2 (including) | 7.1.1.2 (including) |
| Rational_clearcase | Ibm | 7.1.1.3 (including) | 7.1.1.3 (including) |
| Rational_clearcase | Ibm | 7.1.1.4 (including) | 7.1.1.4 (including) |
| Rational_clearcase | Ibm | 7.1.1.5 (including) | 7.1.1.5 (including) |
| Rational_clearcase | Ibm | 7.1.1.6 (including) | 7.1.1.6 (including) |
| Rational_clearcase | Ibm | 7.1.1.7 (including) | 7.1.1.7 (including) |
| Rational_clearcase | Ibm | 7.1.1.8 (including) | 7.1.1.8 (including) |
| Rational_clearcase | Ibm | 7.1.1.9 (including) | 7.1.1.9 (including) |
| Rational_clearcase | Ibm | 7.1.2 (including) | 7.1.2 (including) |
| Rational_clearcase | Ibm | 7.1.2.1 (including) | 7.1.2.1 (including) |
| Rational_clearcase | Ibm | 7.1.2.2 (including) | 7.1.2.2 (including) |
| Rational_clearcase | Ibm | 7.1.2.3 (including) | 7.1.2.3 (including) |
| Rational_clearcase | Ibm | 7.1.2.4 (including) | 7.1.2.4 (including) |
| Rational_clearcase | Ibm | 7.1.2.5 (including) | 7.1.2.5 (including) |
| Rational_clearcase | Ibm | 7.1.2.6 (including) | 7.1.2.6 (including) |
| Rational_clearcase | Ibm | 7.1.2.7 (including) | 7.1.2.7 (including) |
| Rational_clearcase | Ibm | 7.1.2.9 (including) | 7.1.2.9 (including) |
| Rational_clearcase | Ibm | 7.1.2.10 (including) | 7.1.2.10 (including) |
| Rational_clearcase | Ibm | 7.1.2.11 (including) | 7.1.2.11 (including) |
| Rational_clearcase | Ibm | 7.1.2.12 (including) | 7.1.2.12 (including) |
| Rational_clearcase | Ibm | 7.1.2.13 (including) | 7.1.2.13 (including) |
| Rational_clearcase | Ibm | 7.1.2.14 (including) | 7.1.2.14 (including) |
| Rational_clearcase | Ibm | 8.0 (including) | 8.0 (including) |
| Rational_clearcase | Ibm | 8.0.0.1 (including) | 8.0.0.1 (including) |
| Rational_clearcase | Ibm | 8.0.0.2 (including) | 8.0.0.2 (including) |
| Rational_clearcase | Ibm | 8.0.0.3 (including) | 8.0.0.3 (including) |
| Rational_clearcase | Ibm | 8.0.0.4 (including) | 8.0.0.4 (including) |
| Rational_clearcase | Ibm | 8.0.0.5 (including) | 8.0.0.5 (including) |
| Rational_clearcase | Ibm | 8.0.0.6 (including) | 8.0.0.6 (including) |
| Rational_clearcase | Ibm | 8.0.0.7 (including) | 8.0.0.7 (including) |
| Rational_clearcase | Ibm | 8.0.0.8 (including) | 8.0.0.8 (including) |
| Rational_clearcase | Ibm | 8.0.0.9 (including) | 8.0.0.9 (including) |
| Rational_clearcase | Ibm | 8.0.0.10 (including) | 8.0.0.10 (including) |
| Rational_clearcase | Ibm | 8.0.0.11 (including) | 8.0.0.11 (including) |
| Rational_clearcase | Ibm | 8.0.1 (including) | 8.0.1 (including) |
| Rational_clearcase | Ibm | 8.0.1.1 (including) | 8.0.1.1 (including) |
| Rational_clearcase | Ibm | 8.0.1.2 (including) | 8.0.1.2 (including) |
| Rational_clearcase | Ibm | 8.0.1.3 (including) | 8.0.1.3 (including) |
| Rational_clearcase | Ibm | 8.0.1.4 (including) | 8.0.1.4 (including) |