Maximo Asset Management@7.1 Security Vulnerabilities and Issues — Maximo Asset Management@7.1 CVE List

Lucene search

IbmMaximo Asset Management7.1

22 matches found

CVE•added 2013/10/01 11:14 a.m.•45 views

CVE-2013-5381

IBM Maximo Asset Management 6.2 through 6.2.8, 7.1 through 7.1.1.12, and 7.5 before 7.5.0.3 allows remote authenticated users to gain privileges via unspecified vectors.

6.5CVSS6.5AI score0.00513EPSS

CVE•added 2013/10/01 11:14 a.m.•44 views

CVE-2013-3973

SQL injection vulnerability in IBM Maximo Asset Management 7.1 before 7.1.1.12 and 7.5 before 7.5.0.5 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors.

6.5CVSS8AI score0.00302EPSS

CVE•added 2013/10/01 11:14 a.m.•43 views

CVE-2013-3049

IBM Maximo Asset Management 7.1 through 7.1.1.12 and 7.5 before 7.5.0.5 allows remote authenticated users to bypass intended access restrictions via unspecified vectors, a different vulnerability than CVE-2013-3971.

4CVSS6.2AI score0.00179EPSS

CVE•added 2013/10/01 11:14 a.m.•42 views

CVE-2013-3971

4CVSS6.2AI score0.00179EPSS

CVE•added 2013/10/01 11:14 a.m.•40 views

CVE-2013-5382

IBM Maximo Asset Management 6.2 through 6.2.8, 7.1 before 7.1.1.12, and 7.5 before 7.5.0.5 allows remote authenticated users to gain privileges via unspecified vectors, a different vulnerability than CVE-2013-5383.

4CVSS6.5AI score0.00226EPSS

CVE•added 2013/10/01 11:14 a.m.•39 views

CVE-2013-4018

IBM Maximo Asset Management 6.2 through 6.2.8, 7.1 before 7.1.1.12, and 7.5 before 7.5.0.5 allows remote authenticated users to obtain sensitive information via unspecified vectors.

6CVSS5.7AI score0.0048EPSS

CVE•added 2013/10/01 11:14 a.m.•38 views

CVE-2013-4013

IBM Maximo Asset Management 6.2 through 6.2.8, 7.1 through 7.1.1.12, and 7.5 before 7.5.0.2 allows remote attackers to obtain sensitive information via unspecified vectors.

5CVSS6.2AI score0.00348EPSS

CVE•added 2013/10/01 11:14 a.m.•38 views

CVE-2013-4019

Cross-site scripting (XSS) vulnerability in IBM Maximo Asset Management 6.2 through 6.2.8 and 7.1 before 7.1.1.12 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.

3.5CVSS5.2AI score0.00208EPSS

CVE•added 2013/10/01 11:14 a.m.•38 views

CVE-2013-5383

4CVSS6.5AI score0.00226EPSS

CVE•added 2013/02/20 12:9 p.m.•37 views

CVE-2012-3328

Cross-site scripting (XSS) vulnerability in IBM Maximo Asset Management 7.1, Maximo Asset Management Essentials 7.1, Tivoli Asset Management for IT 7.1 and 7.2, Tivoli Service Request Manager 7.1 and 7.2, and Change and Configuration Management Database (CCMDB) 7.1 and 7.2 allows remote attackers t...

4.3CVSS5.7AI score0.00266EPSS

CVE•added 2013/10/01 11:14 a.m.•37 views

CVE-2013-0451

SQL injection vulnerability in IBM Maximo Asset Management 6.2 through 6.2.8 and 7.1 through 7.1.1.12 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors.

6.5CVSS7.9AI score0.00348EPSS

CVE•added 2013/10/01 11:14 a.m.•36 views

CVE-2012-3323

IBM Maximo Asset Management 6.2 before 6.2.8, 7.1 before 7.1.1.12, and 7.5 before 7.5.0.3 allows remote attackers to gain privileges via unspecified vectors.

6.8CVSS7AI score0.01098EPSS

CVE•added 2013/10/01 11:14 a.m.•36 views

CVE-2013-4020

IBM Maximo Asset Management 6.2 through 6.2.8, 7.1 through 7.1.1.12, and 7.5 before 7.5.0.3 allows remote authenticated users to bypass intended access restrictions via unspecified vectors.

4CVSS6.2AI score0.002EPSS

CVE•added 2013/10/01 11:14 a.m.•35 views

CVE-2013-3972

IBM Maximo Asset Management 7.1 before 7.1.1.12 and 7.5 before 7.5.0.5 allows remote authenticated users to obtain sensitive information via unspecified vectors.

4CVSS5.7AI score0.00202EPSS

CVE•added 2013/10/01 11:14 a.m.•35 views

CVE-2013-4021

IBM Maximo Asset Management 6.2 through 6.2.8, 7.1 before 7.1.1.12, and 7.5 before 7.5.0.5 allows remote authenticated users to conduct unspecified file-inclusion attacks via unknown vectors.

6.5CVSS6.3AI score0.00513EPSS

CVE•added 2013/10/01 11:14 a.m.•35 views

CVE-2013-5380

IBM Maximo Asset Management 6.2 through 6.2.8, 7.1 before 7.1.1.12, and 7.5 before 7.5.0.5 allows local users to obtain sensitive information via unspecified vectors.

2.1CVSS5.8AI score0.00063EPSS

CVE•added 2013/12/18 4:4 p.m.•35 views

CVE-2013-5402

Cross-site scripting (XSS) vulnerability in IBM Maximo Asset Management, Maximo Asset Management Essentials, Maximo for Government, Maximo for Nuclear Power, Maximo for Transportation, Maximo for Life Sciences, Maximo for Oil and Gas, and Maximo for Utilities 7.1.x through 7.1.1.12, 7.1.2, 7.5 befo...

3.5CVSS5.4AI score0.0018EPSS

CVE•added 2013/10/01 11:14 a.m.•34 views

CVE-2013-4017

SQL injection vulnerability in IBM Maximo Asset Management 7.1 before 7.1.1.12 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.

6.5CVSS8.4AI score0.003EPSS

CVE•added 2013/10/01 11:14 a.m.•33 views

CVE-2013-4027

IBM Maximo Asset Management 6.2 through 6.2.8, 7.1 through 7.1.1.12, and 7.5 before 7.5.0.5 allows remote authenticated users to bypass intended access restrictions via unspecified vectors.

6.5CVSS6.2AI score0.00281EPSS

CVE•added 2013/10/01 11:14 a.m.•32 views

CVE-2013-3048

Cross-site scripting (XSS) vulnerability in IBM Maximo Asset Management 6.2 through 6.2.8, 7.1 through 7.1.1.12, and 7.5 before 7.5.0.3 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.

3.5CVSS5.3AI score0.00208EPSS

CVE•added 2013/10/01 11:14 a.m.•32 views

CVE-2013-4014

Cross-site scripting (XSS) vulnerability in IBM Maximo Asset Management 6.2 through 6.2.8, 7.1 before 7.1.1.12, and 7.5 before 7.5.0.5 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

4.3CVSS5.7AI score0.00295EPSS

CVE•added 2013/10/01 11:14 a.m.•32 views

CVE-2013-5395

IBM Maximo Asset Management 6.2 through 6.2.8, 7.1 before 7.1.1.12, and 7.5 before 7.5.0.5 allows remote attackers to bypass intended access restrictions via unspecified vectors.

7.5CVSS6.8AI score0.0033EPSS