CVE-2013-2998

Currently unrated

Key Information:

Vendor: IBM
Status: Smartcloud Control Desk
Vendor: CVE Published:; 26 May 2014

Summary

frontcontroller.jsp in IBM Maximo Asset Management 7.x before 7.5.0.6 and SmartCloud Control Desk 7.x before 7.5.0.3 and 7.5.1.x before 7.5.1.2 allows remote authenticated users to obtain sensitive information via an invalid action_code.

References

http://www-01.ibm.com/support/docview.wss?uid=swg1IV34110

vendor-advisoryx_refsource_AIXAPAR

http://www-01.ibm.com/support/docview.wss?uid=swg21670870

x_refsource_CONFIRM

https://exchange.xforce.ibmcloud.com/vulnerabilities/84841

vdb-entryx_refsource_XF

Timeline

Vulnerability published
May 26, 2014
Vulnerability Reserved
Apr 12, 2013