CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

NVD•added 2013/02/20 12:9 p.m.•17 views

CVE-2012-3327

4.3CVSS5.6AI score0.01148EPSS

Prion•added 2013/02/20 12:9 p.m.•16 views

Cross site scripting

3.5CVSS5.5AI score0.00936EPSS

Prion•added 2013/02/20 12:9 p.m.•17 views

Cross site scripting

Cross-site scripting XSS vulnerability in the Tivoli Process Automation Engine TPAE in IBM Maximo Asset Management 6.2 through 7.5, Maximo Asset Management Essentials 6.2 through 7.5, Tivoli Asset Management for IT 6.2 through 7.2, Tivoli Service Request Manager 7.1 and 7.2, Maximo Service Desk...

3.5CVSS5.5AI score0.00936EPSS

Prion•added 2013/02/20 12:9 p.m.•19 views

Cross site scripting

Cross-site scripting XSS vulnerability in IBM Maximo Asset Management 7.1, Maximo Asset Management Essentials 7.1, Tivoli Asset Management for IT 7.1 and 7.2, Tivoli Service Request Manager 7.1 and 7.2, and Change and Configuration Management Database CCMDB 7.1 and 7.2 allows remote attackers to...

4.3CVSS6AI score0.01148EPSS

Exploits0References3Affected Software5

Prion•added 2013/02/20 12:9 p.m.•19 views

Code injection

IBM Maximo Asset Management 6.2 through 7.5, Maximo Asset Management Essentials 6.2 through 7.5, Tivoli Asset Management for IT 6.2 through 7.2, Tivoli Service Request Manager 7.1 and 7.2, Maximo Service Desk 6.2, Change and Configuration Management Database CCMDB 7.1 and 7.2, and SmartCloud...

6.5CVSS7AI score0.01231EPSS

Prion•added 2013/02/20 12:9 p.m.•14 views

Cross site scripting

Cross-site scripting XSS vulnerability in IBM Maximo Asset Management 7.5, Maximo Asset Management Essentials 7.5, and SmartCloud Control Desk 7.5 allows remote authenticated users to inject arbitrary web script or HTML via vectors related to a uisessionid...

3.5CVSS5.5AI score0.00936EPSS

Prion•added 2013/02/20 12:9 p.m.•16 views

Code injection

IBM Maximo Asset Management 7.5, Maximo Asset Management Essentials 7.5, and SmartCloud Control Desk 7.5 allow remote authenticated users to gain privileges via vectors related to an import operation...

6.5CVSS6.9AI score0.01231EPSS

Prion•added 2013/02/20 12:9 p.m.•17 views

Cross site scripting

4.3CVSS6AI score0.01148EPSS

Prion•added 2013/02/20 12:9 p.m.•14 views

Design/Logic Flaw

IBM Maximo Asset Management 7.5, Maximo Asset Management Essentials 7.5, and SmartCloud Control Desk 7.5 allow remote authenticated users to gain privileges and bypass intended restrictions on asset-lookup operations via unspecified vectors...

6.5CVSS6.9AI score0.01241EPSS

CVE-2012-3327

5.6AI score0.01148EPSS

Cvelist•added 2013/02/20 11:0 a.m.•21 views

CVE-2012-3328

5.6AI score0.01148EPSS

CVE-2012-6355

6.4AI score0.01231EPSS

Cvelist•added 2013/02/20 11:0 a.m.•21 views

CVE-2012-6356

6.4AI score0.01231EPSS

CVE•added 2013/02/20 11:0 a.m.•57 views

CVE-2012-3322

CVE-2012-3322 is an XSS vulnerability described across multiple IBM Maximo-related products (Maximo Asset Management 6.2–7.5, Essentials 6.2–7.5, TAM for IT 6.2–7.2, Service Request Manager 7.1–7.2, Service Desk 6.2, CCMDB 7.1–7.2, SmartCloud Control Desk 7.5). It allows remote authenticated user...

3.5CVSS5.3AI score0.00936EPSS

Exploits0References3Affected Software1

CVE-2012-6357

6.5AI score0.01241EPSS

CVE•added 2013/02/20 11:0 a.m.•54 views

CVE-2012-6356

CVE-2012-6356 affects IBM Maximo Asset Management 7.5, Maximo Asset Management Essentials 7.5, and SmartCloud Control Desk 7.5. The vulnerability allows remote authenticated users to escalate privileges via vectors related to an import operation. The available sources (NVD entry and related recor...

6.5CVSS6.5AI score0.01231EPSS

CVE-2012-3322

5.2AI score0.00936EPSS

Cvelist•added 2013/02/20 11:0 a.m.•23 views

CVE-2012-3316

5.3AI score0.00936EPSS