A JSON Hijacking Attack vulnerability exists in IBM Rational ClearQuest Web Client.
| Subscribe to My Notifications to be notified of important product support alerts like this.
CVE ID:CVE-2013-3041
**Description:**An unspecified vulnerability in IBM Rational ClearQuest Web Client could allow an attacker to perform a JSON Hijacking Attack. A JSON Hijacking Attack may expose to an attacker information passed between the ClearQuest Web Server and the browser.
CVSS Base Score: 2.6 **CVSS Temporal Score:**See <https://exchange.xforce.ibmcloud.com/vulnerabilities/84724> for the current score *CVSS Environmental Score:**Undefined CVSS Vector: (AV:N/AC:H/Au:N/C:P/I:N/A:N)
Rational ClearQuest Web 7.1 through 7.1.2.10, 8.0 through 8.0.0.7, and 8.0.1
Upgrade to one of the below versions of IBM Rational ClearQuest:
None