4 matches found
Security Bulletin: Cross-Site Scripting Security Vulnerability in IBM Maximo Asset Management (CVE-2015-4944)
Summary A cross-site scripting vulnerability in Maximo Asset Management could allow an attacker to execute script in a victim's Web browser, within the security context of the hosting Web site. The vulnerability affects Maximo Asset Management, Maximo Asset Management Essentials, Maximo Industry...
CVE-2015-4944
Cross-site scripting XSS vulnerability in IBM Maximo Asset Management 7.1 through 7.1.1.13, 7.5.0 before 7.5.0.8 IFIX003, and 7.6.0 before 7.6.0.1 IFIX001; Maximo Asset Management 7.5.x before 7.5.0.8 IFIX003 and 7.6.0 before 7.6.0.1 IFIX001 for SmartCloud Control Desk; and Maximo Asset Managemen...
CVE-2015-4944
Cross-site scripting XSS vulnerability in IBM Maximo Asset Management 7.1 through 7.1.1.13, 7.5.0 before 7.5.0.8 IFIX003, and 7.6.0 before 7.6.0.1 IFIX001; Maximo Asset Management 7.5.x before 7.5.0.8 IFIX003 and 7.6.0 before 7.6.0.1 IFIX001 for SmartCloud Control Desk; and Maximo Asset Managemen...
CVE-2015-4944
CVE-2015-4944 is an XSS vulnerability in IBM Maximo Asset Management and related IBM products (including SmartCloud Control Desk, Tivoli IT Asset Management for IT, and others built on affected core versions). The root cause is improper validation of user input, allowing remote authenticated atta...