Ibm

Maximo Asset Management

182 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.3

CVE-2013-4014

  • EPSS 0.3%
  • Veröffentlicht 01.10.2013 11:14:43
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Cross-site scripting (XSS) vulnerability in IBM Maximo Asset Management 6.2 through 6.2.8, 7.1 before 7.1.1.12, and 7.5 before 7.5.0.5 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

6.5

CVE-2013-4017

  • EPSS 0.3%
  • Veröffentlicht 01.10.2013 11:14:43
  • Zuletzt bearbeitet 11.04.2025 00:51:21

SQL injection vulnerability in IBM Maximo Asset Management 7.1 before 7.1.1.12 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.

6

CVE-2013-4018

  • EPSS 0.48%
  • Veröffentlicht 01.10.2013 11:14:43
  • Zuletzt bearbeitet 11.04.2025 00:51:21

IBM Maximo Asset Management 6.2 through 6.2.8, 7.1 before 7.1.1.12, and 7.5 before 7.5.0.5 allows remote authenticated users to obtain sensitive information via unspecified vectors.

3.5

CVE-2013-4019

  • EPSS 0.21%
  • Veröffentlicht 01.10.2013 11:14:43
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Cross-site scripting (XSS) vulnerability in IBM Maximo Asset Management 6.2 through 6.2.8 and 7.1 before 7.1.1.12 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.

4

CVE-2013-4020

  • EPSS 0.2%
  • Veröffentlicht 01.10.2013 11:14:43
  • Zuletzt bearbeitet 11.04.2025 00:51:21

IBM Maximo Asset Management 6.2 through 6.2.8, 7.1 through 7.1.1.12, and 7.5 before 7.5.0.3 allows remote authenticated users to bypass intended access restrictions via unspecified vectors.

4.3

CVE-2012-3328

  • EPSS 0.27%
  • Veröffentlicht 20.02.2013 12:09:22
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Cross-site scripting (XSS) vulnerability in IBM Maximo Asset Management 7.1, Maximo Asset Management Essentials 7.1, Tivoli Asset Management for IT 7.1 and 7.2, Tivoli Service Request Manager 7.1 and 7.2, and Change and Configuration Management Datab...

6.5

CVE-2012-6355

  • EPSS 0.39%
  • Veröffentlicht 20.02.2013 12:09:22
  • Zuletzt bearbeitet 11.04.2025 00:51:21

IBM Maximo Asset Management 6.2 through 7.5, Maximo Asset Management Essentials 6.2 through 7.5, Tivoli Asset Management for IT 6.2 through 7.2, Tivoli Service Request Manager 7.1 and 7.2, Maximo Service Desk 6.2, Change and Configuration Management ...

6.5

CVE-2012-6356

  • EPSS 0.39%
  • Veröffentlicht 20.02.2013 12:09:22
  • Zuletzt bearbeitet 11.04.2025 00:51:21

IBM Maximo Asset Management 7.5, Maximo Asset Management Essentials 7.5, and SmartCloud Control Desk 7.5 allow remote authenticated users to gain privileges via vectors related to an import operation.

6.5

CVE-2012-6357

  • EPSS 0.22%
  • Veröffentlicht 20.02.2013 12:09:22
  • Zuletzt bearbeitet 11.04.2025 00:51:21

IBM Maximo Asset Management 7.5, Maximo Asset Management Essentials 7.5, and SmartCloud Control Desk 7.5 allow remote authenticated users to gain privileges and bypass intended restrictions on asset-lookup operations via unspecified vectors.

3.5

CVE-2013-0457

  • EPSS 0.16%
  • Veröffentlicht 20.02.2013 12:09:22
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Cross-site scripting (XSS) vulnerability in IBM Maximo Asset Management 7.5, Maximo Asset Management Essentials 7.5, and SmartCloud Control Desk 7.5 allows remote authenticated users to inject arbitrary web script or HTML via vectors related to a uis...