Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

2897 matches found

CVE
CVEadded 2012/09/10 5:0 p.m.46 views

CVE-2012-3313

CVE-2012-3313 is an XSS vulnerability in IBM Maximo Asset Management 6.2–7.5 (and related products such as SmartCloud Control Desk, Tivoli AM for IT, TS RM, Maximo Service Desk, and CCMDB). The issue allows an attacker to inject arbitrary web script/HTML via unspecified vectors in affected deploy...

4.3CVSS5.8AI score0.01161EPSS
Exploits0References4Affected Software6
CVE
CVEadded 2012/09/10 5:0 p.m.52 views

CVE-2012-2185

CVE-2012-2185 affects IBM Maximo Asset Management and related products (Maximo Asset Management 6.2–7.5 and associated suites) used with SmartCloud Control Desk, Tivoli Asset Management for IT, Tivoli Service Request Manager, Maximo Service Desk, and CCMDB. The IBM bulletin documents information ...

4CVSS5.8AI score0.01094EPSS
Exploits0References5Affected Software6
CVE
CVEadded 2012/09/10 5:0 p.m.50 views

CVE-2012-2183

IBM’s advisory confirms CVE-2012-2183 is a session-fixation vulnerability affecting IBM Maximo Asset Management products (7.5, 7.1, 6.2) and related offerings (SmartCloud Control Desk, Tivoli IT/Service Request Manager, Maximo Service Desk, CCMDB). The issue originates from how web sessions are e...

6.8CVSS6.7AI score0.01309EPSS
Exploits0References5Affected Software6
CVE
CVEadded 2012/09/10 5:0 p.m.53 views

CVE-2012-0747

CVE-2012-0747 is an SQL injection vulnerability affecting IBM Maximo Asset Management across versions 6.2 through 7.5 (and enabled in related products such as SmartCloud Control Desk, Tivoli Asset Management for IT, Tivoli Service Request Manager, Maximo Service Desk, and CCMDB). The issue allows...

6.5CVSS8AI score0.0104EPSS
Exploits0References5Affected Software6
CVE
CVEadded 2012/09/10 5:0 p.m.50 views

CVE-2012-0728

CVE-2012-0728 is an SQL injection in IBM Maximo Asset Management 7.1–7.5 (as used in SmartCloud Control Desk, Tivoli Asset Management for IT, Tivoli Service Request Manager, Maximo Service Desk, and CCMDB). The vulnerability allows remote authenticated users to execute arbitrary SQL commands via ...

6.5CVSS8AI score0.0104EPSS
Exploits0References4Affected Software6
Cvelist
Cvelistadded 2012/09/10 5:0 p.m.26 views

CVE-2012-3326

Cross-site scripting XSS vulnerability in IBM Maximo Asset Management 7.5, as used in SmartCloud Control Desk, Tivoli Asset Management for IT, Tivoli Service Request Manager, Maximo Service Desk, and Change and Configuration Management Database CCMDB, allows remote attackers to inject arbitrary w...

5.7AI score0.01161EPSS
Exploits0References4
Cvelist
Cvelistadded 2012/09/10 5:0 p.m.25 views

CVE-2012-2184

Session fixation vulnerability in IBM Maximo Asset Management 7.1 through 7.5, as used in SmartCloud Control Desk, Tivoli Asset Management for IT, Tivoli Service Request Manager, Maximo Service Desk, and Change and Configuration Management Database CCMDB, allows remote attackers to hijack web...

6.6AI score0.01309EPSS
Exploits0References4
NVD
NVDadded 2012/03/13 3:12 a.m.18 views

CVE-2011-4816

SQL injection vulnerability in the KPI component in IBM Maximo Asset Management and Asset Management Essentials 6.2, 7.1, and 7.5; IBM Tivoli Asset Management for IT 6.2, 7.1, and 7.2; IBM Tivoli Service Request Manager 7.1 and 7.2; IBM Maximo Service Desk 6.2; and IBM Tivoli Change and...

6.5CVSS7.7AI score0.01696EPSS
Exploits0References6
NVD
NVDadded 2012/03/13 3:12 a.m.21 views

CVE-2011-4818

Open redirect vulnerability in IBM Maximo Asset Management and Asset Management Essentials 6.2, 7.1, and 7.5 allows remote authenticated users to redirect users to arbitrary web sites and conduct phishing attacks via the uisessionid parameter to an unspecified component...

4.3CVSS6.1AI score0.01182EPSS
Exploits1References5
NVD
NVDadded 2012/03/13 3:12 a.m.20 views

CVE-2011-4817

The About option on the Help menu in IBM Maximo Asset Management and Asset Management Essentials 6.2, 7.1, and 7.5; IBM Tivoli Asset Management for IT 6.2, 7.1, and 7.2; IBM Tivoli Service Request Manager 7.1 and 7.2; IBM Maximo Service Desk 6.2; and IBM Tivoli Change and Configuration Management...

4CVSS6.2AI score0.01209EPSS
Exploits0References6
NVD
NVDadded 2012/03/13 3:12 a.m.15 views

CVE-2012-0195

Cross-site scripting XSS vulnerability in the Start Center Layout and Configuration component in IBM Maximo Asset Management and Asset Management Essentials 6.2, 7.1, and 7.5; IBM Tivoli Asset Management for IT 6.2, 7.1, and 7.2; IBM Tivoli Service Request Manager 7.1 and 7.2; IBM Maximo Service...

4.3CVSS5.7AI score0.01951EPSS
Exploits0References6
NVD
NVDadded 2012/03/13 3:12 a.m.20 views

CVE-2011-4819

Multiple cross-site scripting XSS vulnerabilities in IBM Maximo Asset Management and Asset Management Essentials 6.2, 7.1, and 7.5 allow remote attackers to inject arbitrary web script or HTML via the uisesionid parameter to 1 maximo.jsp or 2 the default URI under ui/...

4.3CVSS5.7AI score0.01161EPSS
Exploits1References5
NVD
NVDadded 2012/03/13 3:12 a.m.18 views

CVE-2011-1394

IBM Maximo Asset Management and Asset Management Essentials 6.2, 7.1, and 7.5; IBM Tivoli Asset Management for IT 6.2, 7.1, and 7.2; IBM Tivoli Service Request Manager 7.1 and 7.2; IBM Maximo Service Desk 6.2; and IBM Tivoli Change and Configuration Management Database CCMDB 6.2, 7.1, and 7.2 all...

5CVSS6.6AI score0.02584EPSS
Exploits0References6
NVD
NVDadded 2012/03/13 3:12 a.m.18 views

CVE-2011-1395

Cross-site scripting XSS vulnerability in imicon.jsp in IBM Maximo Asset Management and Asset Management Essentials 6.2, 7.1, and 7.5 allows remote attackers to inject arbitrary web script or HTML via the controlid parameter...

4.3CVSS5.6AI score0.01161EPSS
Exploits0References5
NVD
NVDadded 2012/03/13 3:12 a.m.23 views

CVE-2011-1397

Cross-site request forgery CSRF vulnerability in the Labor Reporting page in IBM Maximo Asset Management and Asset Management Essentials 6.2, 7.1, and 7.5; IBM Tivoli Asset Management for IT 6.2, 7.1, and 7.2; IBM Tivoli Service Request Manager 7.1 and 7.2; IBM Maximo Service Desk 6.2; and IBM...

6.8CVSS7.1AI score0.01047EPSS
Exploits0References6
NVD
NVDadded 2012/03/13 3:12 a.m.35 views

CVE-2011-1396

Cross-site scripting XSS vulnerability in IBM Maximo Asset Management and Asset Management Essentials 6.2, 7.1, and 7.5 allows remote attackers to inject arbitrary web script or HTML via the reportType parameter to an unspecified component...

4.3CVSS5.7AI score0.01161EPSS
Exploits0References5
UbuntuCve
UbuntuCveadded 2012/03/13 3:12 a.m.19 views

CVE-2011-4818

Open redirect vulnerability in IBM Maximo Asset Management and Asset Management Essentials 6.2, 7.1, and 7.5 allows remote authenticated users to redirect users to arbitrary web sites and conduct phishing attacks via the uisessionid parameter to an unspecified component...

4.3CVSS6AI score0.01182EPSS
Exploits1References1
Prion
Prionadded 2012/03/13 3:12 a.m.19 views

Cross site scripting

Cross-site scripting XSS vulnerability in IBM Maximo Asset Management and Asset Management Essentials 6.2, 7.1, and 7.5 allows remote attackers to inject arbitrary web script or HTML via the reportType parameter to an unspecified component...

4.3CVSS6AI score0.01161EPSS
Exploits0References5Affected Software2
Prion
Prionadded 2012/03/13 3:12 a.m.15 views

Cross site scripting

Cross-site scripting XSS vulnerability in the Start Center Layout and Configuration component in IBM Maximo Asset Management and Asset Management Essentials 6.2, 7.1, and 7.5; IBM Tivoli Asset Management for IT 6.2, 7.1, and 7.2; IBM Tivoli Service Request Manager 7.1 and 7.2; IBM Maximo Service...

4.3CVSS6AI score0.01951EPSS
Exploits0References6Affected Software6
Prion
Prionadded 2012/03/13 3:12 a.m.20 views

Session fixation

IBM Maximo Asset Management and Asset Management Essentials 6.2, 7.1, and 7.5; IBM Tivoli Asset Management for IT 6.2, 7.1, and 7.2; IBM Tivoli Service Request Manager 7.1 and 7.2; IBM Maximo Service Desk 6.2; and IBM Tivoli Change and Configuration Management Database CCMDB 6.2, 7.1, and 7.2 all...

5CVSS7.1AI score0.02584EPSS
Exploits0References6Affected Software6
Rows per page
Query Builder