CVE-2015-5039
 
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
The Remote Client and change management integrations in IBM Rational ClearCase 7.1.x, 8.0.0.x before 8.0.0.18, and 8.0.1.x before 8.0.1.11 do not properly validate hostnames in X.509 certificates from SSL servers, which allows remote attackers to spoof servers and obtain sensitive information or modify network traffic via a crafted certificate. IBM X-Force ID: 106715.
El cliente remoto y las integraciones de gestión de cambio en las versiones 7.1.x y 8.0.0.x de IBM Rational ClearCase anteriores a la 8.0.0.18 y en las versiones 8.0.1.x anteriores a la 8.0.1.11, no valida correctamente los nombres de host en certificados X.509 de los servidores SSL, lo cual permite a atacantes remotos suplantar estos servidores y obtener información sensible o modificar el tráfico de red mediante un certificado manipulado. IBM X-Force ID: 106715.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2015-06-24 CVE Reserved
- 2018-03-26 CVE Published
- 2023-08-17 EPSS Updated
- 2024-08-06 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-310: Cryptographic Issues
CAPEC
References (2)
URL | Tag | Source |
---|
URL | Date | SRC |
---|
URL | Date | SRC |
---|
URL | Date | SRC |
---|---|---|
http://www-01.ibm.com/support/docview.wss?uid=swg21976566 | 2018-04-24 | |
https://exchange.xforce.ibmcloud.com/vulnerabilities/106715 | 2018-04-24 |
Affected Vendors, Products, and Versions
Vendor | Product | Version | Other | Status | ||||||
---|---|---|---|---|---|---|---|---|---|---|
Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
Ibm Search vendor "Ibm" | Rational Clearcase Search vendor "Ibm" for product "Rational Clearcase" | >= 7.1 <= 7.1.2.16 Search vendor "Ibm" for product "Rational Clearcase" and version " >= 7.1 <= 7.1.2.16" | - |
Affected
| ||||||
Ibm Search vendor "Ibm" | Rational Clearcase Search vendor "Ibm" for product "Rational Clearcase" | > 8.0 <= 8.0.0.17 Search vendor "Ibm" for product "Rational Clearcase" and version " > 8.0 <= 8.0.0.17" | - |
Affected
| ||||||
Ibm Search vendor "Ibm" | Rational Clearcase Search vendor "Ibm" for product "Rational Clearcase" | >= 8.0.1 <= 8.0.1.10 Search vendor "Ibm" for product "Rational Clearcase" and version " >= 8.0.1 <= 8.0.1.10" | - |
Affected
|