Ibm Rational Clearcase

View All Versions

Vulnerability History

Weakness Analysis

Related Vulnerabilities

Vulnerability Severity Score Release Date Summary
CVE-2014-3090 5.0 Sept. 23, 2014

IBM Rational ClearCase 7.1 before, 8.0.0 before, and 8.0.1 before allows remote attackers to cause a denial of service (memory consumption) via a crafted XML document containing a large number of nested entity references, a similar issue to CVE-2003-1564.

CVE-2014-3101 5.0 Sept. 23, 2014

The login form in the Web component in IBM Rational ClearQuest 7.1 before, 8.0.0 before, and 8.0.1 before does not insert a delay after a failed authentication attempt, which makes it easier for remote attackers to obtain access via a brute-force attack.