CVE-2012-0714

Currently unrated

Key Information:

Vendor: IBM
Status: Tivoli Asset Management For It; Maximo Asset Management; Smartcloud Control Desk; Change And Configuration Management Database
Vendor: CVE Published:; 10 September 2012

Summary

Cross-site request forgery (CSRF) vulnerability in IBM Maximo Asset Management 6.2 through 7.5, as used in SmartCloud Control Desk, Tivoli Asset Management for IT, Tivoli Service Request Manager, Maximo Service Desk, and Change and Configuration Management Database (CCMDB), allows remote attackers to hijack the authentication of unspecified victims via unknown vectors.

References

http://osvdb.org/85179

vdb-entryx_refsource_OSVDB

http://secunia.com/advisories/50551

third-party-advisoryx_refsource_SECUNIA

https://exchange.xforce.ibmcloud.com/vulnerabilities/73534

vdb-entryx_refsource_XF

Timeline

Vulnerability published
Sep 10, 2012
Vulnerability Reserved
Jan 17, 2012