Search Results | AttackerKB

Show filters

Topics 57 Users 9,710

Clear All

Disclosure Date

Disclosure Year Disclosure Month

Collection Command and Control Credential Access Defense Evasion Discovery Execution Exfiltration Impact Initial Access Lateral Movement Persistence Privilege Escalation

57 Total Results

Displaying 31-40 of 57

Attacker Value

Unknown

CVE-2013-2998

Disclosure Date: May 26, 2014 (last updated October 05, 2023)

frontcontroller.jsp in IBM Maximo Asset Management 7.x before 7.5.0.6 and SmartCloud Control Desk 7.x before 7.5.0.3 and 7.5.1.x before 7.5.1.2 allows remote authenticated users to obtain sensitive information via an invalid action_code.

0

Attacker Value

Unknown

CVE-2013-5402

Disclosure Date: December 18, 2013 (last updated October 05, 2023)

Cross-site scripting (XSS) vulnerability in IBM Maximo Asset Management, Maximo Asset Management Essentials, Maximo for Government, Maximo for Nuclear Power, Maximo for Transportation, Maximo for Life Sciences, Maximo for Oil and Gas, and Maximo for Utilities 7.1.x through 7.1.1.12, 7.1.2, 7.5 before 7.5.0.3 IFIX014, and 7.5.0.5 before IFIX003; SmartCloud Control Desk (SCCD) 7.5 before 7.5.0.3 IFIX014 and 7.5.0.5 before IFIX003; and Tivoli Asset Management for IT, Tivoli Service Request Manager, Maximo Service Desk, and Change and Configuration Management Database (CCMDB) 7.1.x through 7.1.1.12, 7.1.2, and 7.2.x through 7.2.1 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.

0

Attacker Value

Unknown

CVE-2013-3047

Disclosure Date: October 01, 2013 (last updated October 05, 2023)

IBM Maximo Asset Management 7.1 before 7.1.1.12 and 7.5 before 7.5.0.5 allows remote authenticated users to gain privileges via unspecified vectors.

0

Attacker Value

Unknown

CVE-2013-3973

Disclosure Date: October 01, 2013 (last updated October 05, 2023)

SQL injection vulnerability in IBM Maximo Asset Management 7.1 before 7.1.1.12 and 7.5 before 7.5.0.5 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors.

0

Attacker Value

Unknown

CVE-2013-4013

Disclosure Date: October 01, 2013 (last updated October 05, 2023)

IBM Maximo Asset Management 6.2 through 6.2.8, 7.1 through 7.1.1.12, and 7.5 before 7.5.0.2 allows remote attackers to obtain sensitive information via unspecified vectors.

0

Attacker Value

Unknown

CVE-2013-5380

Disclosure Date: October 01, 2013 (last updated October 05, 2023)

IBM Maximo Asset Management 6.2 through 6.2.8, 7.1 before 7.1.1.12, and 7.5 before 7.5.0.5 allows local users to obtain sensitive information via unspecified vectors.

0

Attacker Value

Unknown

CVE-2013-3971

Disclosure Date: October 01, 2013 (last updated October 05, 2023)

IBM Maximo Asset Management 7.1 through 7.1.1.12 and 7.5 before 7.5.0.5 allows remote authenticated users to bypass intended access restrictions via unspecified vectors, a different vulnerability than CVE-2013-3049.

0

Attacker Value

Unknown

CVE-2013-4021

Disclosure Date: October 01, 2013 (last updated October 05, 2023)

IBM Maximo Asset Management 6.2 through 6.2.8, 7.1 before 7.1.1.12, and 7.5 before 7.5.0.5 allows remote authenticated users to conduct unspecified file-inclusion attacks via unknown vectors.

0

Attacker Value

Unknown

CVE-2013-5381

Disclosure Date: October 01, 2013 (last updated October 05, 2023)

IBM Maximo Asset Management 6.2 through 6.2.8, 7.1 through 7.1.1.12, and 7.5 before 7.5.0.3 allows remote authenticated users to gain privileges via unspecified vectors.

0

Attacker Value

Unknown

CVE-2013-4014

Disclosure Date: October 01, 2013 (last updated October 05, 2023)

Cross-site scripting (XSS) vulnerability in IBM Maximo Asset Management 6.2 through 6.2.8, 7.1 before 7.1.1.12, and 7.5 before 7.5.0.5 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

0