2 matches found
Security Bulletin: IBM Maximo Asset Management is vulnerable to HTTP response splitting attacks (CVE-2017-1291)
Summary IBM Maximo Asset Management is vulnerable to HTTP response splitting attacks. Vulnerability Details CVEID: CVE-2017-1291 DESCRIPTION: IBM Maximo Asset Management is vulnerable to HTTP response splitting attacks. A remote attacker could exploit this vulnerability using specially-crafted UR...
CVE-2017-1291
IBM Maximo Asset Management 7.5 and 7.6 are vulnerable to HTTP response splitting via specially-crafted URLs, enabling potential web cache poisoning and cross-site scripting. Affected products include the core Maximo Asset Management 7.5/7.6 and related Industry Solutions and IBM Control Desk pro...