Ibm

Maximo Asset Management

182 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.4

CVE-2016-5905

  • EPSS 0.15%
  • Published 30.11.2016 11:59:26
  • Last modified 12.04.2025 10:46:40

Cross-site scripting (XSS) vulnerability in IBM Maximo Asset Management 7.5 before 7.5.0.10 IF3 and 7.6 before 7.6.0.5 IF2 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.

5.3

CVE-2016-0393

  • EPSS 0.21%
  • Published 17.07.2016 22:59:01
  • Last modified 12.04.2025 10:46:40

IBM Maximo Asset Management 7.5 before 7.5.0.10-TIV-MBS-IFIX002 and 7.6 before 7.6.0.5-TIV-MAMMT-FP001 allows remote attackers to obtain sensitive URL information by reading log files.

5.4

CVE-2016-0399

  • EPSS 0.17%
  • Published 02.07.2016 14:59:04
  • Last modified 12.04.2025 10:46:40

Cross-site scripting (XSS) vulnerability in IBM Maximo Asset Management 7.1 through 7.1.1.13, 7.5 before 7.5.0.9 IFIX007, and 7.6 before 7.6.0.5 FP005 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL.

4.3

CVE-2016-0289

  • EPSS 0.09%
  • Published 05.04.2016 17:59:06
  • Last modified 12.04.2025 10:46:40

shiprec.xml in the SHIPREC application in IBM Maximo Asset Management 7.1 and 7.5 before 7.5.0.10 and 7.6 before 7.6.0.4 allows remote authenticated users to bypass intended item-selection restrictions via unspecified vectors.

5.4

CVE-2016-0262

  • EPSS 0.17%
  • Published 14.03.2016 01:59:02
  • Last modified 12.04.2025 10:46:40

Cross-site scripting (XSS) vulnerability in IBM Maximo Asset Management 7.1.1 through 7.1.1.3, 7.5.0 before 7.5.0.9 IFIX004, and 7.6.0 before 7.6.0.3 IFIX001 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL.

4.3

CVE-2016-0222

  • EPSS 0.11%
  • Published 14.03.2016 01:59:01
  • Last modified 12.04.2025 10:46:40

IBM Maximo Asset Management 7.6 before 7.6.0.3 IFIX001 allows remote authenticated users to bypass intended access restrictions and read arbitrary purchase-order work logs via unspecified vectors.

6.5

CVE-2015-7448

  • EPSS 0.13%
  • Published 12.03.2016 15:59:01
  • Last modified 12.04.2025 10:46:40

SQL injection vulnerability in IBM Maximo Asset Management 7.1 through 7.1.1.13, 7.5.0 before 7.5.0.9 IFIX003, and 7.6.0 before 7.6.0.3 IFIX001; Maximo Asset Management 7.5.0 before 7.5.0.9 IFIX003, 7.5.1, and 7.6.0 before 7.6.0.3 IFIX001 for SmartCl...

4.9

CVE-2015-7487

  • EPSS 0.05%
  • Published 27.01.2016 05:59:01
  • Last modified 12.04.2025 10:46:40

IBM Maximo Asset Management 7.1 through 7.1.1.13, 7.5.0 before 7.5.0.9 IFIX002, and 7.6.0 before 7.6.0.3 IFIX001; Maximo Asset Management 7.5.0 before 7.5.0.9 IFIX002, 7.5.1, and 7.6.0 before 7.6.0.3 IFIX001 for SmartCloud Control Desk; and Maximo As...

4.3

CVE-2015-5051

  • EPSS 0.14%
  • Published 03.01.2016 05:59:09
  • Last modified 12.04.2025 10:46:40

IBM Maximo Asset Management 7.5 before 7.5.0.8 IF6 and 7.6 before 7.6.0.2 IF1 and Maximo Asset Management 7.5 before 7.5.0.8 IF6, 7.5.1, and 7.6 before 7.6.0.2 IF1 for SmartCloud Control Desk allow remote authenticated users to bypass intended access...

5.5

CVE-2015-5017

  • EPSS 0.11%
  • Published 03.01.2016 05:59:03
  • Last modified 12.04.2025 10:46:40

IBM Maximo Asset Management 7.1 through 7.1.1.13, 7.5.0 before 7.5.0.8 IFIX005, and 7.6.0 before 7.6.0.2 IFIX002; Maximo Asset Management 7.5.0 before 7.5.0.8 IFIX005, 7.5.1, and 7.6.0 before 7.6.0.2 IFIX002 for SmartCloud Control Desk; and Maximo As...