Ibm

Maximo Asset Management

182 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
3.5

CVE-2014-3025

  • EPSS 0.21%
  • Published 30.07.2014 11:15:33
  • Last modified 12.04.2025 10:46:40

Multiple cross-site scripting (XSS) vulnerabilities in IBM Maximo Asset Management 6.2 through 6.2.8, 6.x and 7.1 through 7.1.1.2, and 7.5 through 7.5.0.6; Maximo Asset Management 7.5 through 7.5.0.3 and 7.5.1 through 7.5.1.2 for SmartCloud Control D...

3.5

CVE-2014-3026

  • EPSS 0.17%
  • Published 29.07.2014 20:55:08
  • Last modified 12.04.2025 10:46:40

CRLF injection vulnerability in IBM Maximo Asset Management 7.5 through 7.5.0.6, and 7.5 through 7.5.0.3 and 7.5.1 through 7.5.1.2 for SmartCloud Control Desk, allows remote authenticated users to inject arbitrary HTTP headers and conduct HTTP respon...

3.5

CVE-2013-6741

  • EPSS 0.18%
  • Published 26.05.2014 16:55:03
  • Last modified 12.04.2025 10:46:40

IBM Maximo Asset Management 7.x before 7.1.1.7 LAFIX.20140319-0837 and 7.5.x before 7.5.0.5 IFIX006; SmartCloud Control Desk 7.x before 7.5.0.3 and 7.5.1.x before 7.5.1.2; and Tivoli IT Asset Management for IT, Tivoli Service Request Manager, Maximo ...

3.5

CVE-2014-0824

  • EPSS 0.16%
  • Published 26.05.2014 16:55:03
  • Last modified 12.04.2025 10:46:40

Cross-site scripting (XSS) vulnerability in IBM Maximo Asset Management 7.x before 7.1.1.8 LAFIX.20140319-0839 and 7.1.1.12 before IFIX.20140321-1336 and Tivoli IT Asset Management for IT, Tivoli Service Request Manager, Maximo Service Desk, and Chan...

3.5

CVE-2014-0825

  • EPSS 0.19%
  • Published 26.05.2014 16:55:03
  • Last modified 12.04.2025 10:46:40

Cross-site scripting (XSS) vulnerability in openreport.jsp in IBM Maximo Asset Management 7.x before 7.1.1.12 IFIX.20140321-1336 and 7.5.x before 7.5.0.5 IFIX006; SmartCloud Control Desk 7.x before 7.5.0.3 and 7.5.1.x before 7.5.1.2; and Tivoli IT As...

6

CVE-2014-0849

  • EPSS 0.37%
  • Published 26.05.2014 16:55:03
  • Last modified 12.04.2025 10:46:40

IBM Maximo Asset Management 7.x before 7.5.0.3 IFIX027 and SmartCloud Control Desk 7.x before 7.5.0.3 and 7.5.1.x before 7.5.1.2 allow remote authenticated users to gain privileges by leveraging membership in two security groups.

4.3

CVE-2014-0893

  • EPSS 0.27%
  • Published 26.05.2014 16:55:03
  • Last modified 12.04.2025 10:46:40

Cross-site scripting (XSS) vulnerability in customreport.jsp in IBM Maximo Asset Management 7.5.x before 7.5.0.5 IFIX006 and SmartCloud Control Desk 7.x before 7.5.0.3 and 7.5.1.x before 7.5.1.2 allows remote authenticated users to inject arbitrary w...

6.5

CVE-2013-4016

  • EPSS 0.31%
  • Published 26.05.2014 16:55:02
  • Last modified 12.04.2025 10:46:40

SQL injection vulnerability in IBM Maximo Asset Management 7.x before 7.1.1.7 LAFIX.20140319-0837, 7.1.1.11 before IFIX.20140323-0749, 7.1.1.12 before IFIX.20140321-1336, 7.5.x before 7.5.0.3 IFIX027, 7.5.0.4 before IFIX011, and 7.5.0.5 before IFIX00...

3.5

CVE-2013-5460

  • EPSS 0.16%
  • Published 26.05.2014 16:55:02
  • Last modified 12.04.2025 10:46:40

IBM Maximo Asset Management 7.x before 7.5.0.6 and SmartCloud Control Desk 7.x before 7.5.0.3 and 7.5.1.x before 7.5.1.2 allow remote authenticated users to bypass intended access restrictions, and read communication logs associated with unrelated re...

6

CVE-2013-5464

  • EPSS 0.22%
  • Published 26.05.2014 16:55:02
  • Last modified 12.04.2025 10:46:40

IBM Maximo Asset Management 7.5.x before 7.5.0.3 IFIX027, 7.5.0.4 before IFIX011, and 7.5.0.5 before IFIX006 and SmartCloud Control Desk 7.x before 7.5.0.3 and 7.5.1.x before 7.5.1.2 allow remote authenticated users to bypass intended access restrict...