Lucene search
+L

90 matches found

Prion
Prion
added 2014/04/19 4:49 a.m.18 views

Design/Logic Flaw

Unspecified vulnerability in the Integration Service in HP Universal Configuration Management Database 9.05, 10.01, and 10.10 allows remote authenticated users to obtain sensitive information via unknown vectors, aka ZDI-CAN-2042...

4CVSS6.2AI score0.01155EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2014/04/19 1:0 a.m.50 views

CVE-2013-6214

HP Universal Configuration Management Database (UCMDB) Integration Service (v9.05, v10.01, v10.10) contains an unspecified vulnerability that could allow remote authenticated users to disclose information via unknown vectors (ZDI-CAN-2042). The HP security bulletin (HPSBMU02988 rev.1, 2014-04-17)...

4CVSS5.9AI score0.01155EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2014/04/19 1:0 a.m.38 views

CVE-2013-6214

Unspecified vulnerability in the Integration Service in HP Universal Configuration Management Database 9.05, 10.01, and 10.10 allows remote authenticated users to obtain sensitive information via unknown vectors, aka ZDI-CAN-2042...

5.7AI score0.01155EPSS
Exploits1References1
seebug.org
seebug.org
added 2014/03/06 12:0 a.m.32 views

synetics i-doit pro API跨站脚本漏洞

BUGTRAQ ID:65957 CVE ID:CVE-2014-2231 Synetics i-doit是德国Synetics公司的一个基于Web的开源IT文档和CMDB(配置管理数据库),它能够记录IT系统及其变化的信息,同时针对系统变化制定应急方案,最终确保IT网络稳定、高效的运作。 synetics i-doit 1.2.5之前版本的的API存在跨站脚本漏洞,允许远程攻击者通过产权注入任意的web脚本或HTML。 0 synetics GmbH i-doit 1.2.4 synetics GmbH i-doit 1.1.1 synetics GmbH i-doit 1.1.2...

4.3CVSS6.7AI score0.00939EPSS
Exploits1
NVD
NVD
added 2013/12/18 4:4 p.m.23 views

CVE-2013-5402

Cross-site scripting XSS vulnerability in IBM Maximo Asset Management, Maximo Asset Management Essentials, Maximo for Government, Maximo for Nuclear Power, Maximo for Transportation, Maximo for Life Sciences, Maximo for Oil and Gas, and Maximo for Utilities 7.1.x through 7.1.1.12, 7.1.2, 7.5 befo...

3.5CVSS5.2AI score0.00946EPSS
Exploits0References4
NVD
NVD
added 2012/09/10 5:55 p.m.19 views

CVE-2012-2183

Session fixation vulnerability in IBM Maximo Asset Management 6.2 through 7.5, as used in SmartCloud Control Desk, Tivoli Asset Management for IT, Tivoli Service Request Manager, Maximo Service Desk, and Change and Configuration Management Database CCMDB, allows remote attackers to hijack web...

6.8CVSS6.6AI score0.02021EPSS
Exploits0References5
NVD
NVD
added 2012/09/10 5:55 p.m.25 views

CVE-2012-2184

Session fixation vulnerability in IBM Maximo Asset Management 7.1 through 7.5, as used in SmartCloud Control Desk, Tivoli Asset Management for IT, Tivoli Service Request Manager, Maximo Service Desk, and Change and Configuration Management Database CCMDB, allows remote attackers to hijack web...

6.8CVSS6.6AI score0.01309EPSS
Exploits0References4
NVD
NVD
added 2012/09/10 5:55 p.m.20 views

CVE-2012-0746

Cross-site scripting XSS vulnerability in IBM Maximo Asset Management 7.5, as used in SmartCloud Control Desk, Tivoli Asset Management for IT, Tivoli Service Request Manager, Maximo Service Desk, and Change and Configuration Management Database CCMDB, allows remote authenticated users to inject...

3.5CVSS5.2AI score0.00946EPSS
Exploits0References4
Prion
Prion
added 2012/09/10 5:55 p.m.22 views

Cross site scripting

Cross-site scripting XSS vulnerability in IBM Maximo Asset Management 7.5, as used in SmartCloud Control Desk, Tivoli Asset Management for IT, Tivoli Service Request Manager, Maximo Service Desk, and Change and Configuration Management Database CCMDB, allows remote attackers to inject arbitrary w...

4.3CVSS6AI score0.01161EPSS
Exploits0References4Affected Software6
Prion
Prion
added 2012/09/10 5:55 p.m.23 views

Cross site scripting

Cross-site scripting XSS vulnerability in IBM Maximo Asset Management 6.2 through 7.5, as used in SmartCloud Control Desk, Tivoli Asset Management for IT, Tivoli Service Request Manager, Maximo Service Desk, and Change and Configuration Management Database CCMDB, allows remote attackers to inject...

4.3CVSS6AI score0.01161EPSS
Exploits0References4Affected Software6
Prion
Prion
added 2012/09/10 5:55 p.m.22 views

Sql injection

SQL injection vulnerability in IBM Maximo Asset Management 7.5, as used in SmartCloud Control Desk, Tivoli Asset Management for IT, Tivoli Service Request Manager, Maximo Service Desk, and Change and Configuration Management Database CCMDB, allows remote authenticated users to execute arbitrary S...

6.5CVSS8.3AI score0.0104EPSS
Exploits0References4Affected Software6
Prion
Prion
added 2012/09/10 5:55 p.m.21 views

Cross site scripting

Cross-site scripting XSS vulnerability in IBM Maximo Asset Management 7.5, as used in SmartCloud Control Desk, Tivoli Asset Management for IT, Tivoli Service Request Manager, Maximo Service Desk, and Change and Configuration Management Database CCMDB, allows remote authenticated users to inject...

3.5CVSS5.5AI score0.00946EPSS
Exploits0References4Affected Software6
Prion
Prion
added 2012/09/10 5:55 p.m.24 views

Sql injection

SQL injection vulnerability in IBM Maximo Asset Management 7.1 through 7.5, as used in SmartCloud Control Desk, Tivoli Asset Management for IT, Tivoli Service Request Manager, Maximo Service Desk, and Change and Configuration Management Database CCMDB, allows remote authenticated users to execute...

6.5CVSS8.3AI score0.0104EPSS
Exploits0References4Affected Software6
Prion
Prion
added 2012/09/10 5:55 p.m.22 views

Cross site request forgery (csrf)

Cross-site request forgery CSRF vulnerability in IBM Maximo Asset Management 6.2 through 7.5, as used in SmartCloud Control Desk, Tivoli Asset Management for IT, Tivoli Service Request Manager, Maximo Service Desk, and Change and Configuration Management Database CCMDB, allows remote attackers to...

6.8CVSS7.5AI score0.01047EPSS
Exploits0References6Affected Software6
CVE
CVE
added 2012/09/10 5:0 p.m.59 views

CVE-2012-0747

CVE-2012-0747 is an SQL injection vulnerability affecting IBM Maximo Asset Management across versions 6.2 through 7.5 (and enabled in related products such as SmartCloud Control Desk, Tivoli Asset Management for IT, Tivoli Service Request Manager, Maximo Service Desk, and CCMDB). The issue allows...

6.5CVSS8AI score0.0104EPSS
Exploits0References5Affected Software6
CVE
CVE
added 2012/09/10 5:0 p.m.51 views

CVE-2012-3326

Summary: CVE-2012-3326 is a Cross-Site Scripting (XSS) vulnerability affecting IBM Maximo Asset Management 7.5 and related products (SmartCloud Control Desk, Tivoli Asset Management for IT, Tivoli Service Request Manager, Maximo Service Desk, CCMDB). The issue arises in the web interface allowing...

4.3CVSS5.8AI score0.01161EPSS
Exploits0References4Affected Software6
CVE
CVE
added 2012/09/10 5:0 p.m.56 views

CVE-2012-2183

IBM’s advisory confirms CVE-2012-2183 is a session-fixation vulnerability affecting IBM Maximo Asset Management products (7.5, 7.1, 6.2) and related offerings (SmartCloud Control Desk, Tivoli IT/Service Request Manager, Maximo Service Desk, CCMDB). The issue originates from how web sessions are e...

6.8CVSS6.7AI score0.02021EPSS
Exploits0References5Affected Software6
Cvelist
Cvelist
added 2012/09/10 5:0 p.m.28 views

CVE-2012-0728

SQL injection vulnerability in IBM Maximo Asset Management 7.1 through 7.5, as used in SmartCloud Control Desk, Tivoli Asset Management for IT, Tivoli Service Request Manager, Maximo Service Desk, and Change and Configuration Management Database CCMDB, allows remote authenticated users to execute...

7.8AI score0.0104EPSS
Exploits0References4
Cvelist
Cvelist
added 2012/09/10 5:0 p.m.29 views

CVE-2012-0747

SQL injection vulnerability in IBM Maximo Asset Management 6.2 through 7.5, as used in SmartCloud Control Desk, Tivoli Asset Management for IT, Tivoli Service Request Manager, Maximo Service Desk, and Change and Configuration Management Database CCMDB, allows remote authenticated users to execute...

7.8AI score0.0104EPSS
Exploits0References5
Cvelist
Cvelist
added 2012/09/10 5:0 p.m.24 views

CVE-2012-0746

Cross-site scripting XSS vulnerability in IBM Maximo Asset Management 7.5, as used in SmartCloud Control Desk, Tivoli Asset Management for IT, Tivoli Service Request Manager, Maximo Service Desk, and Change and Configuration Management Database CCMDB, allows remote authenticated users to inject...

5.2AI score0.00946EPSS
Exploits0References4
Rows per page
Query Builder