Cross-Site Scripting Vulnerability in IBM Maximo Asset Management
CVE-2015-4944

Currently unrated

Key Information:

Summary

A Cross-Site Scripting (XSS) vulnerability exists in the IBM Maximo Asset Management software, allowing remote authenticated users to inject arbitrary web scripts or HTML through specially crafted URLs. This vulnerability impacts multiple versions, granting attackers the potential to manipulate web pages and launch attacks that could compromise user data and system integrity. It affects IBM Maximo Asset Management from versions 7.1 to 7.1.1.13, as well as various iterations in the 7.5.x and 7.6.x series.

References

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.