Maximo Service Desk@6.2 Security Vulnerabilities and Issues — Maximo Service Desk@6.2 CVE List

Lucene search

IbmMaximo Service Desk6.2

20 matches found

CVE•added 2020/02/18 5:15 p.m.•48 views

CVE-2013-3323

A Privilege Escalation Vulnerability exists in IBM Maximo Asset Management 7.5, 7.1, and 6.2, when WebSeal with Basic Authentication is used, due to a failure to invalidate the authentication session, which could let a malicious user obtain unauthorized access.

9.8CVSS9.2AI score0.00534EPSS

CVE•added 2012/03/13 3:12 a.m.•47 views

CVE-2011-1397

Cross-site request forgery (CSRF) vulnerability in the Labor Reporting page in IBM Maximo Asset Management and Asset Management Essentials 6.2, 7.1, and 7.5; IBM Tivoli Asset Management for IT 6.2, 7.1, and 7.2; IBM Tivoli Service Request Manager 7.1 and 7.2; IBM Maximo Service Desk 6.2; and IBM Ti...

6.8CVSS7.3AI score0.00237EPSS

CVE•added 2013/02/20 12:9 p.m.•47 views

CVE-2012-3316

Cross-site scripting (XSS) vulnerability in the Tivoli Process Automation Engine (TPAE) in IBM Maximo Asset Management 6.2 through 7.5, Maximo Asset Management Essentials 6.2 through 7.5, Tivoli Asset Management for IT 6.2 through 7.2, Tivoli Service Request Manager 7.1 and 7.2, Maximo Service Desk...

3.5CVSS5.4AI score0.00188EPSS

CVE•added 2013/02/20 12:9 p.m.•46 views

CVE-2012-3322

Cross-site scripting (XSS) vulnerability in IBM Maximo Asset Management 6.2 through 7.5, Maximo Asset Management Essentials 6.2 through 7.5, Tivoli Asset Management for IT 6.2 through 7.2, Tivoli Service Request Manager 7.1 and 7.2, Maximo Service Desk 6.2, Change and Configuration Management Datab...

3.5CVSS5.3AI score0.00188EPSS

CVE•added 2012/03/13 3:12 a.m.•45 views

CVE-2011-1394

IBM Maximo Asset Management and Asset Management Essentials 6.2, 7.1, and 7.5; IBM Tivoli Asset Management for IT 6.2, 7.1, and 7.2; IBM Tivoli Service Request Manager 7.1 and 7.2; IBM Maximo Service Desk 6.2; and IBM Tivoli Change and Configuration Management Database (CCMDB) 6.2, 7.1, and 7.2 all...

5CVSS6.8AI score0.01501EPSS

CVE•added 2012/09/10 5:55 p.m.•44 views

CVE-2012-2185

IBM Maximo Asset Management 6.2 through 7.5, as used in SmartCloud Control Desk, Tivoli Asset Management for IT, Tivoli Service Request Manager, Maximo Service Desk, and Change and Configuration Management Database (CCMDB), allows remote authenticated users to obtain sensitive information via unspe...

4CVSS5.8AI score0.00226EPSS

CVE•added 2012/03/13 3:12 a.m.•43 views

CVE-2011-4817

The About option on the Help menu in IBM Maximo Asset Management and Asset Management Essentials 6.2, 7.1, and 7.5; IBM Tivoli Asset Management for IT 6.2, 7.1, and 7.2; IBM Tivoli Service Request Manager 7.1 and 7.2; IBM Maximo Service Desk 6.2; and IBM Tivoli Change and Configuration Management D...

4CVSS6.3AI score0.00327EPSS

CVE•added 2012/03/13 3:12 a.m.•43 views

CVE-2012-0195

Cross-site scripting (XSS) vulnerability in the Start Center Layout and Configuration component in IBM Maximo Asset Management and Asset Management Essentials 6.2, 7.1, and 7.5; IBM Tivoli Asset Management for IT 6.2, 7.1, and 7.2; IBM Tivoli Service Request Manager 7.1 and 7.2; IBM Maximo Service ...

4.3CVSS5.8AI score0.00478EPSS

CVE•added 2012/09/10 5:55 p.m.•43 views

CVE-2012-0747

SQL injection vulnerability in IBM Maximo Asset Management 6.2 through 7.5, as used in SmartCloud Control Desk, Tivoli Asset Management for IT, Tivoli Service Request Manager, Maximo Service Desk, and Change and Configuration Management Database (CCMDB), allows remote authenticated users to execute...

6.5CVSS8AI score0.00346EPSS

CVE•added 2012/09/10 5:55 p.m.•43 views

CVE-2012-2184

Session fixation vulnerability in IBM Maximo Asset Management 7.1 through 7.5, as used in SmartCloud Control Desk, Tivoli Asset Management for IT, Tivoli Service Request Manager, Maximo Service Desk, and Change and Configuration Management Database (CCMDB), allows remote attackers to hijack web ses...

6.8CVSS6.7AI score0.00609EPSS

CVE•added 2013/02/20 12:9 p.m.•43 views

CVE-2012-3327

4.3CVSS5.8AI score0.00266EPSS

CVE•added 2012/09/10 5:55 p.m.•41 views

CVE-2012-0714

Cross-site request forgery (CSRF) vulnerability in IBM Maximo Asset Management 6.2 through 7.5, as used in SmartCloud Control Desk, Tivoli Asset Management for IT, Tivoli Service Request Manager, Maximo Service Desk, and Change and Configuration Management Database (CCMDB), allows remote attackers ...

6.8CVSS7.2AI score0.00204EPSS

CVE•added 2012/09/10 5:55 p.m.•41 views

CVE-2012-0728

SQL injection vulnerability in IBM Maximo Asset Management 7.1 through 7.5, as used in SmartCloud Control Desk, Tivoli Asset Management for IT, Tivoli Service Request Manager, Maximo Service Desk, and Change and Configuration Management Database (CCMDB), allows remote authenticated users to execute...

6.5CVSS8AI score0.003EPSS

CVE•added 2012/09/10 5:55 p.m.•41 views

CVE-2012-2183

Session fixation vulnerability in IBM Maximo Asset Management 6.2 through 7.5, as used in SmartCloud Control Desk, Tivoli Asset Management for IT, Tivoli Service Request Manager, Maximo Service Desk, and Change and Configuration Management Database (CCMDB), allows remote attackers to hijack web ses...

6.8CVSS6.7AI score0.00744EPSS

CVE•added 2012/03/13 3:12 a.m.•40 views

CVE-2011-4816

SQL injection vulnerability in the KPI component in IBM Maximo Asset Management and Asset Management Essentials 6.2, 7.1, and 7.5; IBM Tivoli Asset Management for IT 6.2, 7.1, and 7.2; IBM Tivoli Service Request Manager 7.1 and 7.2; IBM Maximo Service Desk 6.2; and IBM Tivoli Change and Configurati...

6.5CVSS8AI score0.00563EPSS

CVE•added 2013/02/20 12:9 p.m.•39 views

CVE-2012-6355

IBM Maximo Asset Management 6.2 through 7.5, Maximo Asset Management Essentials 6.2 through 7.5, Tivoli Asset Management for IT 6.2 through 7.2, Tivoli Service Request Manager 7.1 and 7.2, Maximo Service Desk 6.2, Change and Configuration Management Database (CCMDB) 7.1 and 7.2, and SmartCloud Cont...

6.5CVSS6.6AI score0.00394EPSS

CVE•added 2012/09/10 5:55 p.m.•38 views

CVE-2012-3326

Cross-site scripting (XSS) vulnerability in IBM Maximo Asset Management 7.5, as used in SmartCloud Control Desk, Tivoli Asset Management for IT, Tivoli Service Request Manager, Maximo Service Desk, and Change and Configuration Management Database (CCMDB), allows remote attackers to inject arbitrary...

4.3CVSS5.8AI score0.00256EPSS

CVE•added 2012/09/10 5:55 p.m.•37 views

CVE-2012-0727

SQL injection vulnerability in IBM Maximo Asset Management 7.5, as used in SmartCloud Control Desk, Tivoli Asset Management for IT, Tivoli Service Request Manager, Maximo Service Desk, and Change and Configuration Management Database (CCMDB), allows remote authenticated users to execute arbitrary S...

6.5CVSS8AI score0.003EPSS

CVE•added 2012/09/10 5:55 p.m.•36 views

CVE-2012-3313

Cross-site scripting (XSS) vulnerability in IBM Maximo Asset Management 6.2 through 7.5, as used in SmartCloud Control Desk, Tivoli Asset Management for IT, Tivoli Service Request Manager, Maximo Service Desk, and Change and Configuration Management Database (CCMDB), allows remote attackers to inje...

4.3CVSS5.8AI score0.00256EPSS

CVE•added 2012/09/10 5:55 p.m.•34 views

CVE-2012-0746

3.5CVSS5.3AI score0.0018EPSS