CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:S/C:P/I:P/A:P
AI Score
Confidence
Low
EPSS
Percentile
59.6%
IBM Maximo Asset Management 7.5.x before 7.5.0.3 IFIX027, 7.5.0.4 before IFIX011, and 7.5.0.5 before IFIX006 and SmartCloud Control Desk 7.x before 7.5.0.3 and 7.5.1.x before 7.5.1.2 allow remote authenticated users to bypass intended access restrictions, and modify physical counts associated with restricted storerooms, via unspecified vectors.
Vendor | Product | Version | CPE |
---|---|---|---|
ibm | maximo_asset_management | 7.5.0.0 | cpe:2.3:a:ibm:maximo_asset_management:7.5.0.0:*:*:*:*:*:*:* |
ibm | maximo_asset_management | 7.5.0.1 | cpe:2.3:a:ibm:maximo_asset_management:7.5.0.1:*:*:*:*:*:*:* |
ibm | maximo_asset_management | 7.5.0.2 | cpe:2.3:a:ibm:maximo_asset_management:7.5.0.2:*:*:*:*:*:*:* |
ibm | maximo_asset_management | 7.5.0.3 | cpe:2.3:a:ibm:maximo_asset_management:7.5.0.3:*:*:*:*:*:*:* |
ibm | maximo_asset_management | 7.5.0.4 | cpe:2.3:a:ibm:maximo_asset_management:7.5.0.4:*:*:*:*:*:*:* |
ibm | maximo_asset_management | 7.5.0.5 | cpe:2.3:a:ibm:maximo_asset_management:7.5.0.5:*:*:*:*:*:*:* |
ibm | smartcloud_control_desk | 7.0 | cpe:2.3:a:ibm:smartcloud_control_desk:7.0:*:*:*:*:*:*:* |
ibm | smartcloud_control_desk | 7.5 | cpe:2.3:a:ibm:smartcloud_control_desk:7.5:*:*:*:*:*:*:* |
ibm | smartcloud_control_desk | 7.5.0.0 | cpe:2.3:a:ibm:smartcloud_control_desk:7.5.0.0:*:*:*:*:*:*:* |
ibm | smartcloud_control_desk | 7.5.0.1 | cpe:2.3:a:ibm:smartcloud_control_desk:7.5.0.1:*:*:*:*:*:*:* |