Lucene search
K

2903 matches found

CVE
CVE
added 2013/10/01 10:0 a.m.59 views

CVE-2013-3049

CVE-2013-3049 affects IBM Maximo Asset Management and related IBM Tivoli/SmartCloud products. The vulnerability is a security bypass that could allow remote authenticated users to bypass intended access restrictions via unspecified vectors (a different issue from CVE-2013-3971). NVD records a CVS...

4CVSS6.2AI score0.01115EPSS
Exploits0References4Affected Software1
CVE
CVE
added 2013/10/01 10:0 a.m.41 views

CVE-2013-4027

CVE-2013-4027 affects IBM Maximo Asset Management and related products (Maximo Asset Management 6.2.x, 7.1.x, 7.5) where remote authenticated users can bypass access restrictions via unspecified vectors. The connected IBM bulletin confirms vulnerable components and lists FIX/IF packages per relea...

6.5CVSS6.2AI score0.01241EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2013/10/01 10:0 a.m.24 views

CVE-2013-4017

SQL injection vulnerability in IBM Maximo Asset Management 7.1 before 7.1.1.12 allows remote attackers to execute arbitrary SQL commands via unspecified vectors...

9.8AI score0.0104EPSS
Exploits0References4
CVE
CVE
added 2013/10/01 10:0 a.m.44 views

CVE-2013-3972

CVE-2013-3972 affects IBM Maximo Asset Management (and related Maximo offerings): versions 7.1 before 7.1.1.12 and 7.5 before 7.5.0.5 are vulnerable to an information-disclosure condition triggered by remote authenticated users via unspecified vectors. IBM’s consolidated bulletin shows the vulner...

4CVSS5.7AI score0.01094EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2013/10/01 10:0 a.m.26 views

CVE-2013-3971

IBM Maximo Asset Management 7.1 through 7.1.1.12 and 7.5 before 7.5.0.5 allows remote authenticated users to bypass intended access restrictions via unspecified vectors, a different vulnerability than CVE-2013-3049...

8.9AI score0.01115EPSS
Exploits0References4
CVE
CVE
added 2013/10/01 10:0 a.m.41 views

CVE-2013-5395

CVE-2013-5395 affects IBM Maximo Asset Management and related products. Affected: Maximo Asset Management 6.2–6.2.8; 7.1 before 7.1.1.12; 7.5 before 7.5.0.5. Issue: remote attackers can bypass intended access restrictions via unspecified vectors. Evidence: IBM Flash with detailed product list and...

7.5CVSS6.8AI score0.01523EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2013/10/01 10:0 a.m.24 views

CVE-2013-5380

IBM Maximo Asset Management 6.2 through 6.2.8, 7.1 before 7.1.1.12, and 7.5 before 7.5.0.5 allows local users to obtain sensitive information via unspecified vectors...

8.4AI score0.00333EPSS
Exploits0References5
CVE
CVE
added 2013/10/01 10:0 a.m.41 views

CVE-2013-3048

CVE-2013-3048 is an XSS vulnerability in IBM Maximo Asset Management and related Maximo products across multiple releases (6.2.x to 7.5). The issue allows remote authenticated users to inject arbitrary web script/HTML via unspecified vectors due to a cross-site scripting flaw. IBM’s bulletin list...

3.5CVSS5.3AI score0.00946EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2013/10/01 10:0 a.m.25 views

CVE-2013-3047

IBM Maximo Asset Management 7.1 before 7.1.1.12 and 7.5 before 7.5.0.5 allows remote authenticated users to gain privileges via unspecified vectors...

9.1AI score0.01245EPSS
Exploits0References4
Cvelist
Cvelist
added 2013/10/01 10:0 a.m.20 views

CVE-2013-4021

IBM Maximo Asset Management 6.2 through 6.2.8, 7.1 before 7.1.1.12, and 7.5 before 7.5.0.5 allows remote authenticated users to conduct unspecified file-inclusion attacks via unknown vectors...

8.9AI score0.01245EPSS
Exploits0References5
CVE
CVE
added 2013/10/01 10:0 a.m.49 views

CVE-2013-4019

CVE-2013-4019 is an XSS vulnerability in IBM Maximo Asset Management (and related Maximo offerings) affecting 6.2.x through 6.2.8 and 7.1 up to 7.1.1.12. The description specifies remote authenticated users can inject arbitrary web script/HTML via unspecified vectors. Connected IBM bulletin detai...

3.5CVSS5.2AI score0.00946EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2013/10/01 10:0 a.m.25 views

CVE-2012-3323

IBM Maximo Asset Management 6.2 before 6.2.8, 7.1 before 7.1.1.12, and 7.5 before 7.5.0.3 allows remote attackers to gain privileges via unspecified vectors...

9.6AI score0.01447EPSS
Exploits0References6
Cvelist
Cvelist
added 2013/10/01 10:0 a.m.20 views

CVE-2013-3973

SQL injection vulnerability in IBM Maximo Asset Management 7.1 before 7.1.1.12 and 7.5 before 7.5.0.5 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors...

9.4AI score0.0104EPSS
Exploits0References4
Cvelist
Cvelist
added 2013/10/01 10:0 a.m.26 views

CVE-2013-4014

Cross-site scripting XSS vulnerability in IBM Maximo Asset Management 6.2 through 6.2.8, 7.1 before 7.1.1.12, and 7.5 before 7.5.0.5 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

7.6AI score0.01161EPSS
Exploits0References5
Cvelist
Cvelist
added 2013/10/01 10:0 a.m.24 views

CVE-2013-4020

IBM Maximo Asset Management 6.2 through 6.2.8, 7.1 through 7.1.1.12, and 7.5 before 7.5.0.3 allows remote authenticated users to bypass intended access restrictions via unspecified vectors...

8.8AI score0.01115EPSS
Exploits0References5
CVE
CVE
added 2013/10/01 10:0 a.m.44 views

CVE-2013-4021

CVE-2013-4021 affects IBM Maximo Asset Management and related products (Maximo Asset Management 6.2.x up to 6.2.8; 7.1 up to 7.1.1.12; 7.5 up to 7.5.0.5) and several IBM Maximo/Tivoli components. The vulnerability is described as an unspecified remote file-inclusion issue exploitable by remote au...

6.5CVSS6.3AI score0.01245EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2013/10/01 10:0 a.m.26 views

CVE-2013-4027

IBM Maximo Asset Management 6.2 through 6.2.8, 7.1 through 7.1.1.12, and 7.5 before 7.5.0.5 allows remote authenticated users to bypass intended access restrictions via unspecified vectors...

8.8AI score0.01241EPSS
Exploits0References5
CVE
CVE
added 2013/10/01 10:0 a.m.43 views

CVE-2013-4014

CVE-2013-4014 is a cross-site scripting (XSS) vulnerability affecting IBM Maximo Asset Management 6.2 through 6.2.8, 7.1 before 7.1.1.12, and 7.5 before 7.5.0.5. The issue allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. IBM’s bulletin lists affected product...

4.3CVSS5.7AI score0.01161EPSS
Exploits0References5Affected Software1
CVE
CVE
added 2013/10/01 10:0 a.m.47 views

CVE-2013-0451

CVE-2013-0451 affects IBM Maximo Asset Management and related Maximo/Tivoli products (6.2.x, 7.1.x, 7.5.x) with a SQL Injection vulnerability. The connected IBM bulletin describes the flaw as SQL Injection (noted as IV24726 in APARs) in the List Page Description filter and related components, ena...

6.5CVSS7.9AI score0.0104EPSS
Exploits0References5Affected Software1
Symantec
Symantec
added 2013/03/07 12:0 a.m.60 views

Oracle Java SE CVE-2013-1488 Remote Code Execution Vulnerability

Description Oracle Java SE is prone to a remote code execution vulnerability. An attacker can exploit this issue to execute arbitrary code in the context of the current process. Technologies Affected Avaya Aura Communication Manager Utility Services 6.0 Avaya Aura Communication Manager Utility...

10CVSS1.2AI score0.86963EPSS
Exploits10References4Affected Software47
Rows per page
Query Builder