The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.

Computer vulnerabilities of IBM Rational ClearCase

WebSphere AS: directory traversal via JAX-RPC Applications
An attacker can traverse directories via JAX-RPC Applications of WebSphere AS, in order to read a file outside the service root path...
6427873, 6446739, CVE-2020-5016, VIGILANCE-VUL-34798
WebSphere AS: directory traversal
An attacker can traverse directories of WebSphere AS, in order to read a file outside the service root path...
6415959, 6416615, CVE-2021-20354, VIGILANCE-VUL-34609
WebSphere AS: external XML entity injection
An attacker can transmit malicious XML data to WebSphere AS, in order to read a file, scan sites, or trigger a denial of service...
6413709, 6416615, CVE-2021-20353, VIGILANCE-VUL-34536
WebSphere AS: external XML entity injection
An attacker can transmit malicious XML data to WebSphere AS, in order to read a file, scan sites, or trigger a denial of service...
6408244, 6416615, CERTFR-2021-AVI-081, CVE-2020-4949, VIGILANCE-VUL-34405
WebSphere AS: directory traversal via Admin Console
An attacker can traverse directories via Admin Console of WebSphere AS, in order to read a file outside the service root path...
6356083, 6357619, CVE-2020-4782, VIGILANCE-VUL-33695
WebSphere AS: information disclosure via Serialized Objects
An attacker can bypass access restrictions to data via Serialized Objects of WebSphere AS, in order to obtain sensitive information...
6339807, 6357619, CVE-2020-4576, VIGILANCE-VUL-33461
WebSphere AS: information disclosure via Specialized Access
An attacker can bypass access restrictions to data via Specialized Access of WebSphere AS, in order to obtain sensitive information...
6339255, 6343331, 6357619, CVE-2020-4629, VIGILANCE-VUL-33452
WebSphere AS: external XML entity injection
An attacker can transmit malicious XML data to WebSphere AS, in order to read a file, scan sites, or trigger a denial of service...
6334311, 6343331, 6357619, CERTFR-2020-AVI-583, CVE-2020-4643, VIGILANCE-VUL-33363
WebSphere AS: Cross Site Scripting via Server Admin Console
An attacker can trigger a Cross Site Scripting via Server Admin Console of WebSphere AS, in order to run JavaScript code in the context of the web site...
6328895, 6335277, 6435703, CVE-2020-4578, VIGILANCE-VUL-33291
WebSphere Application Server ND: Cross Site Scripting via High Availability Deployment Manager
An attacker can trigger a Cross Site Scripting via High Availability Deployment Manager of WebSphere Application Server ND, in order to run JavaScript code in the context of the web site...
6323293, 6327363, CVE-2020-4575, VIGILANCE-VUL-33181
Our database contains other pages. You can request a free trial to read them.

Display information about IBM Rational ClearCase: