Lucene search
K

6 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2022/09/22 3:2 a.m.25 views

Security Bulletin: IBM Maximo Asset Management contains a vulnerability that could allow a remote authenticated user to view ticket worklog entries that they should not have access to (CVE-2015-5016)

Summary IBM Maximo Asset Management contains a vulnerability that could allow a remote authenticated user to view ticket worklog entries that they should not have access to. This vulnerability could allow a local attacker to obtain sensitive information. The vulnerability affects Maximo Asset...

4.3CVSS4.1AI score0.00993EPSS
Exploits0Affected Software15
IBM Security Bulletins
IBM Security Bulletins
added 2022/09/22 3:2 a.m.18 views

Security Bulletin: A security vulnerability has been identified in IBM WebSphere Application Server shipped with Asset and Service Management (CVE-2017-1504)

Summary IBM WebSphere Application Server is shipped as a component of Maximo Asset Management, Maximo Asset Management Essentials, Maximo Industry Solutions including Maximo for Energy Optimization, Maximo for Government, Maximo for Nuclear Power, Maximo for Transportation, Maximo for Life...

6.5CVSS6.6AI score0.00944EPSS
Exploits0Affected Software15
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/17 3:13 p.m.27 views

Security Bulletin: IBM Maximo Asset Management could allow an authenticated user to view query results that the user should not have access to view due to improper access control (CVE-2015-5051)

Summary IBM Maximo Asset Management contains a vulnerability which could allow an authenticated user to view query results that the user should not have access to view due to improper access control. This vulnerability could allow a local attacker to compromise data integrity. The vulnerability...

4.3CVSS0.6AI score0.00935EPSS
Exploits0Affected Software10
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/17 3:13 p.m.25 views

Security Bulletin: IBM Maximo Asset Management could allow an authenticated user to change or view information that the user should not have access to due to issues with the Scheduler functionality (CVE-2015-7396)

Summary IBM Maximo Asset Management could allow an authenticated user to change or view information that the user should not have access to due to issues with the Scheduler functionality. This vulnerability could allow a local attacker to compromise data integrity and confidentiality. The...

5.5CVSS0.5AI score0.00791EPSS
Exploits0Affected Software9
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/17 2:55 p.m.26 views

Security Bulletin: Cross-Site Scripting (XSS) and Remote Code Execution Vulnerabilities Affecting Asset and Service Management (CVE-2015-0104, CVE-2015-0107, CVE-2015-0108, CVE-2015-0109)

Summary There are cross-site scripting and remove code execution vulnerabilities in code that is used by Maximo Asset Management, Maximo Asset Management Essentials, Maximo Industry Solutions including Maximo for Government, Maximo for Nuclear Power, Maximo for Transportation, Maximo for Life...

8.8CVSS0.7AI score0.06849EPSS
Exploits2Affected Software11
NVD
NVD
added 2013/12/18 4:4 p.m.22 views

CVE-2013-5402

Cross-site scripting XSS vulnerability in IBM Maximo Asset Management, Maximo Asset Management Essentials, Maximo for Government, Maximo for Nuclear Power, Maximo for Transportation, Maximo for Life Sciences, Maximo for Oil and Gas, and Maximo for Utilities 7.1.x through 7.1.1.12, 7.1.2, 7.5 befo...

3.5CVSS5.2AI score0.00946EPSS
Exploits0References4
Rows per page
Query Builder