A Privilege Escalation Vulnerability exists in IBM Maximo Asset Management 7.5, 7.1, and 6.2, when WebSeal with Basic Authentication is used, due to a failure to invalidate the authentication session, which could let a malicious user obtain unauthorized access.
oryginał ENCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HIBM Change And Configuration Management Database
APPIbm7.17.2IBM Maximo Asset Management
APPIbm6.27.17.5IBM Maximo Asset Management Essentials
APPIbm6.27.17.5IBM Maximo For Government
APPIbm6.27.17.5IBM Maximo For Life Sciences
APPIbm6.26.46.57.17.5IBM Maximo For Nuclear Power
APPIbm6.26.37.17.5IBM Maximo For Oil And Gas
APPIbm6.26.36.47.17.5IBM Maximo For Transportation
APPIbm6.26.37.17.5IBM Maximo For Utilities
APPIbm6.26.37.17.5IBM Maximo Service Desk
APPIbm6.2IBM Smartcloud Control Desk
APPIbm7.5IBM Tivoli Asset Management For It
APPIbm6.27.17.2IBM Tivoli Service Request Manager
APPIbm7.17.2
Powiązane podatności
IBM Maximo Asset Management 7.6.0 and 7.6.1 is potentially vulnerable to CSV Injection. A remote attacker coul...
IBM Maximo Asset Management 7.6.0 and 7.6.1 could allow an attacker to bypass authentication and issue command...
IBM Maximo Asset Management 7.1, 7.5, and 7.6 is vulnerable to SQL injection. A remote attacker could send spe...
IBM Maximo Asset Management 7.6.1.1, 7.6.1.2, and 7.6.1.3 could allow a user to bypass authentication and obta...
IBM Maximo Asset Management 7.6.1.1 and 7.6.1.2 could allow a remote attacker to obtain sensitive information ...