Cross-site Scripting Vulnerability in IBM Maximo Asset Management and SmartCloud Control Desk
CVE-2013-0457

Currently unrated

Key Information:

Vendor

IBM
Status
Maximo Asset Management Essentials
Smartcloud Control Desk
Maximo Asset Management
Vendor
CVE Published:
20 February 2013

What is CVE-2013-0457?

A cross-site scripting (XSS) vulnerability exists in IBM Maximo Asset Management and SmartCloud Control Desk products. This flaw permits remote authenticated users to inject arbitrary web scripts or HTML, leveraging vectors associated with the uisessionid. Such vulnerabilities can lead to unauthorized actions being performed on behalf of the affected user, potentially compromising sensitive user data and system integrity.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://www-01.ibm.com/support/docview.wss?uid=swg1IV20590
vendor-advisoryx_refsource_AIXAPAR
http://www-01.ibm.com/support/docview.wss?uid=swg21625624
x_refsource_CONFIRM
https://exchange.xforce.ibmcloud.com/vulnerabilities/81011
vdb-entryx_refsource_XF

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.