Lucene search
+L

90 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2022/09/22 3:2 a.m.22 views

Security Bulletin: IBM Maximo Asset Management could allow a local attacker to obtain information due to the autocomplete feature on password input fields (CVE-2015-1933)

Summary The autocomplete attribute of the password field on the Maximo Asset Management Login page is not set to false. This vulnerability could allow a local attacker to obtain account access. The vulnerability affects Maximo Asset Management, Maximo Asset Management Essentials, Maximo Industry...

2.1CVSS5.9AI score0.00444EPSS
Exploits0Affected Software14
IBM Security Bulletins
IBM Security Bulletins
added 2022/09/22 3:2 a.m.29 views

Security Bulletin: Multiple security vulnerabilities have been identified in IBM WebSphere Application Server shipped with Asset and Service Management (CVE-2016-1181 and CVE-2016-1182)

Summary IBM WebSphere Application Server is shipped as a component of Maximo Asset Management, Maximo Asset Management Essentials, Maximo Industry Solutions including Maximo for Energy Optimization, Maximo for Government, Maximo for Nuclear Power, Maximo for Transportation, Maximo for Life...

8.2CVSS8.2AI score0.25737EPSS
Exploits0Affected Software14
IBM Security Bulletins
IBM Security Bulletins
added 2022/09/22 3:2 a.m.26 views

Security Bulletin: A security vulnerability has been identified in WebSphere Application Server shipped with Asset and Service Management (CVE-2014-0114)

Summary WebSphere Application Server is shipped as a component of Maximo Asset Management, Maximo Asset Management Essentials, Maximo Industry Solutions including Maximo for Government, Maximo for Nuclear Power, Maximo for Transportation, Maximo for Life Sciences, Maximo for Oil and Gas and Maxim...

7.5CVSS7.1AI score0.96121EPSS
Exploits4Affected Software7
IBM Security Bulletins
IBM Security Bulletins
added 2022/09/22 3:2 a.m.12 views

Security Bulletin: Multiple vulnerabilities in IBM® Java SDK affect IBM WebSphere Application Server shipped with Asset and Service Management

Summary IBM WebSphere Application Server is shipped as a component of Maximo Asset Management, Maximo Asset Management Essentials, Maximo Industry Solutions including Maximo for Energy Optimization, Maximo for Government, Maximo for Nuclear Power, Maximo for Transportation, Maximo for Life...

6.9AI score
Exploits0Affected Software13
IBM Security Bulletins
IBM Security Bulletins
added 2022/09/22 3:2 a.m.22 views

Security Bulletin: Potential denial of service may affect IBM HTTP Server on Windows (CVE-2015-1829), impacting Asset and Service Management

Summary There is a potential denial of service that may affect IBM HTTP Server on Windows CVE-2015-1829. To exploit the attack requires local access to the server system. The attack affects Maximo Asset Management, Maximo Asset Management Essentials, Maximo Industry Solutions including Maximo for...

5CVSS7.7AI score0.02552EPSS
Exploits0Affected Software15
IBM Security Bulletins
IBM Security Bulletins
added 2022/09/22 3:2 a.m.42 views

Security Bulletin: Vulnerability with RSA Export Keys May Affect IBM WebSphere Application Server on Asset and Service Management (CVE-2015-0138)

Summary The “FREAK: Factoring Attack on RSA-EXPORT keys" TLS/SSL client and server vulnerability CVE-2015-0138 may affect some configurations of IBM WebSphere Application Server Full Profile, IBM WebSphere Application Server Liberty Profile, and IBM WebSphere Application Server Hypervisor Edition...

4.3CVSS4.7AI score0.03239EPSS
Exploits0Affected Software14
IBM Security Bulletins
IBM Security Bulletins
added 2022/09/22 3:2 a.m.19 views

Security Bulletin: A security vulnerability has been identified in IBM WebSphere Application Server shipped with Asset and Service Management (CVE-2017-1504)

Summary IBM WebSphere Application Server is shipped as a component of Maximo Asset Management, Maximo Asset Management Essentials, Maximo Industry Solutions including Maximo for Energy Optimization, Maximo for Government, Maximo for Nuclear Power, Maximo for Transportation, Maximo for Life...

6.5CVSS6.6AI score0.00944EPSS
Exploits0Affected Software15
IBM Security Bulletins
IBM Security Bulletins
added 2022/09/22 3:2 a.m.34 views

Security Bulletin: Security Vulnerability in IBM WebSphere Application Server (CVE-2015-4000) Affects Asset and Service Management

Summary The LogJam Attack on Diffie-Hellman ciphers CVE-2015-4000 may affect some configurations of IBM WebSphere Application Server. The vulnerability affects Maximo Asset Management, Maximo Asset Management Essentials, Maximo Industry Solutions including Maximo for Energy Optimization, Maximo f...

3.7CVSS4.2AI score0.9986EPSS
Exploits1Affected Software15
ATTACKERKB
ATTACKERKB
added 2022/08/16 7:0 p.m.5 views

CVE-2022-1410

OS Command Injection vulnerability in the dboptimize component of Device42 Asset Management Appliance allows an authenticated attacker to execute remote code on the device. This issue affects: Device42 CMDB version 18.01.00 and prior versions...

8.8CVSS8.4AI score0.01019EPSS
Exploits0References2
Qualys Blog
Qualys Blog
added 2022/07/11 1:0 p.m.33 views

How to Quickly Prioritize Risks with VMDR 2.0 and Orchestrate Response with CMDB & ITSM Integration

A single source of truth for asset inventory enables Cybersecurity and IT teams to optimally automate risk prioritization and response. Qualys VMDR 2.0 with TruRiskTM leverages Qualys CSAM to automate the Asset Criticality Score, a key parameter of risk scoring. This blog explains how with insigh...

0.3AI score
Exploits0
OSV
OSV
added 2018/12/31 3:29 p.m.3 views

CVE-2018-18593

Remote Directory Traversal and Remote Disclosure of Privileged Information in UCMDB Configuration Management Service, version 10.22, 10.22 CUP1, 10.22 CUP2, 10.22 CUP3, 10.22 CUP4, 10.22 CUP5, 10.22 CUP6, 10.22 CUP7, 10.33, 10.33 CUP1, 10.33 CUP2, 10.33 CUP3, 2018.02, 2018.05, 2018.08, 2018.11. T...

7.5CVSS5.8AI score0.06592EPSS
Exploits0References2
OSV
OSV
added 2018/07/18 11:29 p.m.7 views

CVE-2018-0345

A vulnerability in the configuration and management database of the Cisco SD-WAN Solution could allow an authenticated, remote attacker to execute arbitrary commands with the privileges of the vmanage user in the configuration management system of the affected software. The vulnerability is due t...

8.8CVSS6.1AI score0.03EPSS
Exploits0References2
CNVD
CNVD
added 2018/06/19 12:0 a.m.6 views

Micro Focus Universal Configuration Management Database Browser Cross-Site Request Forgery Vulnerability

Micro Focus Universal Configuration Management Database UCMDB is a suite of database software from Micro Focus, UK, that stores, controls and manages software and infrastructure components and their interrelationships.UCMDB Browser is one of the browsers used to access the UCMDB data. UCMDB Brows...

8.8CVSS7.8AI score0.00742EPSS
Exploits0References1
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/17 3:50 p.m.19 views

Security Bulletin: A security vulnerability has been identified in IBM WebSphere Application Server shipped with Asset and Service Management (CVE-2017-1788)

Summary IBM WebSphere Application Server is shipped as a component of Maximo Asset Management, Maximo Asset Management Essentials, Maximo Industry Solutions including Maximo for Energy Optimization, Maximo for Government, Maximo for Nuclear Power, Maximo for Transportation, Maximo for Life...

5.3CVSS1.4AI score0.02396EPSS
Exploits0Affected Software13
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/17 3:50 p.m.30 views

Security Bulletin: A security vulnerability has been identified in IBM WebSphere Application Server shipped with Asset and Service Management (CVE-2017-1741)

Summary IBM WebSphere Application Server is shipped as a component of Maximo Asset Management, Maximo Asset Management Essentials, Maximo Industry Solutions including Maximo for Energy Optimization, Maximo for Government, Maximo for Nuclear Power, Maximo for Transportation, Maximo for Life...

4.3CVSS1.4AI score0.0211EPSS
Exploits0Affected Software13
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/17 3:49 p.m.20 views

Security Bulletin: A security vulnerability has been identified in IBM WebSphere Application Server shipped with Asset and Service Management (CVE-2017-1681)

Summary IBM WebSphere Application Server is shipped as a component of Maximo Asset Management, Maximo Asset Management Essentials, Maximo Industry Solutions including Maximo for Energy Optimization, Maximo for Government, Maximo for Nuclear Power, Maximo for Transportation, Maximo for Life...

3.3CVSS1.4AI score0.0035EPSS
Exploits0Affected Software13
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/17 3:34 p.m.19 views

Security Bulletin: IBM Maximo Asset Management could allow a local attacker to obtain sensitive information using HTTP Header Injection (CVE-2017-1124)

Summary IBM Maximo Asset Management could allow a local attacker to obtain sensitive information using HTTP Header Injection. Vulnerability Details CVEID: CVE-2017-1124 DESCRIPTION: IBM Maximo Asset Management could allow a local attacker to obtain sensitive information using HTTP Header Injectio...

2.9CVSS0.8AI score0.00297EPSS
Exploits0Affected Software14
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/17 3:32 p.m.26 views

Security Bulletin: A security vulnerability has been identified in IBM WebSphere Application Server shipped with Asset and Service Management (CVE-2016-9736)

Summary IBM WebSphere Application Server is shipped with Maximo Asset Management, Maximo Asset Management Essentials, Maximo Industry Solutions including Maximo for Nuclear Power, Maximo for Transportation, Maximo for Life Sciences, Maximo for Oil and Gas, and Maximo for Utilities, Maximo Adapter...

5.3CVSS1.4AI score0.02329EPSS
Exploits0Affected Software12
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/17 3:16 p.m.18 views

Security Bulletin: Multiple vulnerabilities identified in IBM WebSphere Application Server shipped with Asset and Service Management (CVE-2016-0201, CVE-2015-7420)

Summary IBM WebSphere Application Server is shipped as a component of Maximo Asset Management, Maximo Asset Management Essentials, Maximo Industry Solutions including Maximo for Energy Optimization, Maximo for Government, Maximo for Nuclear Power, Maximo for Transportation, Maximo for Life...

5.9CVSS0.6AI score0.02032EPSS
Exploits0Affected Software11
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/17 3:15 p.m.19 views

Security Bulletin: IBM Maximo Asset Management contains a vulnerability which could allow an authenticated system administrator to obtain sensitive information incorrectly exposed in log files (CVE-2015-7487)

Summary IBM Maximo Asset Management contains a vulnerability which could allow an authenticated system administrator to obtain sensitive information incorrectly exposed in log files. Vulnerability Details CVEID: CVE-2015-7487 DESCRIPTION: IBM Maximo Asset Management contains a vulnerability which...

4.9CVSS0.4AI score0.00284EPSS
Exploits0Affected Software12
Rows per page
Query Builder