CVE-2019-4059

CVSS v3.1

9.8

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions IBM Rational ClearCase version 1.0.0.0

Description The issue concerns insufficient protection of the document database password in the GIT connector. This could allow an attacker to obtain the password, resulting in unauthorized access to the document database.

Recommendations For IBM Rational ClearCase version 1.0.0.0, consider restricting access to the document database until a fix is available, and ensure that all connections to the database are securely authenticated to minimize the risk of exploitation.

Fix

Insufficiently Protected Credentials

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-522

Related Identifiers

CVE-2019-4059

Affected Products

Ibm Rational Clearcase

CVE-2019-4059

Weakness Enumeration

Related Identifiers

Affected Products

References · 4