Medium Severity

IBM Security Bulletin: A security vulnerability in OpenSSL affects IBM Rational ClearQuest (CVE-2019-1559)

Share this post:

An OpenSSL vulnerability was disclosed on February 26, 2019 by the OpenSSL Project. OpenSSL is used by IBM Rational ClearQuest. IBM Rational ClearQuest has addressed the applicable CVE.

CVE(s): VE-2019-1559

Affected product(s) and affected version(s):

Rational ClearQuest version 8 and 9 in the following components:

  • ClearQuest hooks and cqperl/ratlperl scripts that use SSL.
  • ClearQuest SSL database connections.
Version Status
9.0.1 through 9.0.1.6 Affected
9.0 through 9.0.0.6 Affected
8.0.1 through 8.0.1.20 Affected
8.0 through 8.0.0.21 Affected

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: https://www-01.ibm.com/support/docview.wss?uid=ibm10887169
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/157514

More stories

IBM Security Bulletin: IBM Maximo Asset Management is vulnerable to File Path Traversal (CVE-2019-4430)

Jul 16, 2019 9:02 am EDT | Medium Severity

IBM Maximo Asset Management is vulnerable to File Path Traversal CVE(s): CVE-2019-4430 Affected product(s) and affected version(s): This vulnerability affects the following versions of the IBM Maximo Asset Management core product, and all other IBM Maximo Industry Solution and IBM Control Desk products, regardless of their own version, if they are currently installed on top ...read more


IBM Security Bulletin: IBM Event Streams is affected by jackson-databind vulnerability CVE-2019-12086

Jul 16, 2019 9:02 am EDT | Medium Severity

IBM Event Streams has addressed the following vulnerability CVE(s): CVE-2019-12086 Affected product(s) and affected version(s):IBM Event Streams 2018.3.0 IBM Event Streams 2018.3.1 IBM Event Streams 2019.1.1 Refer to the following reference URLs for remediation and additional vulnerability details:Source Bulletin: https://www-01.ibm.com/support/docview.wss?uid=ibm10888069X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/161256 ...read more


IBM Security Bulletin: Multiple vulnerabilities in current releases of the IBM® SDK, Java™ Technology Edition affect IBM Tivoli Netcool Configuration Manager (CVE-2018-1890, CVE-2019-2426)

Jul 16, 2019 9:01 am EDT | Medium Severity

There are multiple vulnerabilities in IBM® SDK Java™ Technology Edition, Version 8, which is used by IBM Tivoli Netcool Configuration Manager IP Edition v6.4.1 and v6.4.2, which were disclosed in the Oracle January 2019 Critical Patch Update. CVE(s): CVE-2018-1890, CVE-2019-2426 Affected product(s) and affected version(s): IBM Tivoli Network Manager IP Edition v6.4.1, v6.4.2 Refer to ...read more