1. CVE-Search
  2. CVE-2010-4603
ID CVE-2010-4603
Summary IBM Rational ClearQuest 7.0.x before 7.0.1.11, 7.1.1.x before 7.1.1.4, and 7.1.2.x before 7.1.2.1 does not prevent modification of back-reference fields, which allows remote authenticated users to interfere with intended record relationships, and possibly cause a denial of service (loop) or have unspecified other impact, by (1) adding or (2) removing a back reference.
References
Vulnerable Configurations
  • cpe:2.3:a:ibm:rational_clearquest:7.0:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:rational_clearquest:7.0:*:*:*:*:*:*:*
  • cpe:2.3:a:ibm:rational_clearquest:7.0.0.0:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:rational_clearquest:7.0.0.0:*:*:*:*:*:*:*
  • cpe:2.3:a:ibm:rational_clearquest:7.0.0.1:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:rational_clearquest:7.0.0.1:*:*:*:*:*:*:*
  • cpe:2.3:a:ibm:rational_clearquest:7.0.0.2:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:rational_clearquest:7.0.0.2:*:*:*:*:*:*:*
  • cpe:2.3:a:ibm:rational_clearquest:7.0.0.3:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:rational_clearquest:7.0.0.3:*:*:*:*:*:*:*
  • cpe:2.3:a:ibm:rational_clearquest:7.0.0.4:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:rational_clearquest:7.0.0.4:*:*:*:*:*:*:*
  • cpe:2.3:a:ibm:rational_clearquest:7.0.0.5:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:rational_clearquest:7.0.0.5:*:*:*:*:*:*:*
  • cpe:2.3:a:ibm:rational_clearquest:7.0.0.6:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:rational_clearquest:7.0.0.6:*:*:*:*:*:*:*
  • cpe:2.3:a:ibm:rational_clearquest:7.0.0.7:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:rational_clearquest:7.0.0.7:*:*:*:*:*:*:*
  • cpe:2.3:a:ibm:rational_clearquest:7.0.0.8:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:rational_clearquest:7.0.0.8:*:*:*:*:*:*:*
  • cpe:2.3:a:ibm:rational_clearquest:7.0.0.9:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:rational_clearquest:7.0.0.9:*:*:*:*:*:*:*
  • cpe:2.3:a:ibm:rational_clearquest:7.0.1:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:rational_clearquest:7.0.1:*:*:*:*:*:*:*
  • cpe:2.3:a:ibm:rational_clearquest:7.0.1.0:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:rational_clearquest:7.0.1.0:*:*:*:*:*:*:*
  • cpe:2.3:a:ibm:rational_clearquest:7.0.1.1:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:rational_clearquest:7.0.1.1:*:*:*:*:*:*:*
  • cpe:2.3:a:ibm:rational_clearquest:7.0.1.2:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:rational_clearquest:7.0.1.2:*:*:*:*:*:*:*
  • cpe:2.3:a:ibm:rational_clearquest:7.0.1.3:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:rational_clearquest:7.0.1.3:*:*:*:*:*:*:*
  • cpe:2.3:a:ibm:rational_clearquest:7.0.1.4:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:rational_clearquest:7.0.1.4:*:*:*:*:*:*:*
  • cpe:2.3:a:ibm:rational_clearquest:7.0.1.5:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:rational_clearquest:7.0.1.5:*:*:*:*:*:*:*
  • cpe:2.3:a:ibm:rational_clearquest:7.0.1.6:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:rational_clearquest:7.0.1.6:*:*:*:*:*:*:*
  • cpe:2.3:a:ibm:rational_clearquest:7.0.1.7:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:rational_clearquest:7.0.1.7:*:*:*:*:*:*:*
  • cpe:2.3:a:ibm:rational_clearquest:7.0.1.8:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:rational_clearquest:7.0.1.8:*:*:*:*:*:*:*
  • cpe:2.3:a:ibm:rational_clearquest:7.0.1.9:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:rational_clearquest:7.0.1.9:*:*:*:*:*:*:*
  • cpe:2.3:a:ibm:rational_clearquest:7.0.1.10:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:rational_clearquest:7.0.1.10:*:*:*:*:*:*:*
  • cpe:2.3:a:ibm:rational_clearquest:7.1.1.1:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:rational_clearquest:7.1.1.1:*:*:*:*:*:*:*
  • cpe:2.3:a:ibm:rational_clearquest:7.1.1.2:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:rational_clearquest:7.1.1.2:*:*:*:*:*:*:*
  • cpe:2.3:a:ibm:rational_clearquest:7.1.1.3:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:rational_clearquest:7.1.1.3:*:*:*:*:*:*:*
  • cpe:2.3:a:ibm:rational_clearquest:7.1.2:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:rational_clearquest:7.1.2:*:*:*:*:*:*:*
CVSS
Base: 6.5 (as of 17-08-2017 - 01:33)
Impact:
Exploitability:
CWE NVD-CWE-Other
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW SINGLE
Impact
ConfidentialityIntegrityAvailability
PARTIAL PARTIAL PARTIAL
cvss-vector via4 AV:N/AC:L/Au:S/C:P/I:P/A:P
refmap via4
aixapar PM22186
bid 45648
confirm
xf clearquest-back-reference-sec-bypass(64439)
Last major update 17-08-2017 - 01:33
Published 29-12-2010 - 18:00
Last modified 17-08-2017 - 01:33
Back to Top