IBM Rational ClearQuest Web client contains a Cross-Site Scripting vulnerability.
| Subscribe to My Notifications to be notified of important product support alerts like this.
CVE ID: CVE-2012-5757
Description: The ClearQuest Web client contains a Cross-Site Scripting vulnerability. This vulnerability does not exist in the ClearQuest desktop clients or command line utilities.
**CVSS Base Score:**4.3
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/80061> for the current score *CVSS Environmental Score:**Undefined CVSS Vector: (AV:N/AC:M/Au:N/C:N/I:P/A:N)
ClearQuest Web Clients prior to version 7.1.2.10 or version 8.0.0.6.
Upgrade to one of the following:
Use ClearQuest desktop applications.