Cross-site scripting (XSS) vulnerability in IBM Maximo Asset Management 7.1 up to and including 7.1.1.8, and Maximo Asset Management 7.1 up to and including 7.1.1.8 and 7.2 for Tivoli IT Asset Management for IT and certain other products, allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than CVE-2015-0104, CVE-2015-0107, and CVE-2015-0109.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
ibm maximo asset management 7.1.1.5 |
||
ibm maximo for utilities 7.1 |
||
ibm maximo asset management 7.1.1.7 |
||
ibm maximo for nuclear power 7.1 |
||
ibm tivoli service request manager 7.1 |
||
ibm maximo asset management 7.1.1.8 |
||
ibm maximo asset management 7.1.1.2 |
||
ibm change and configuration management database 7.1 |
||
ibm tivoli asset management for it 7.2 |
||
ibm maximo asset management 7.1 |
||
ibm maximo for oil and gas 7.1 |
||
ibm maximo for government 7.1 |
||
ibm change and configuration management database 7.2 |
||
ibm tivoli asset management for it 7.1 |
||
ibm maximo asset management 7.1.1.6 |
||
ibm maximo for life sciences 7.1 |
||
ibm tivoli service request manager 7.2 |
||
ibm maximo asset management 7.1.1 |
||
ibm maximo for transportation 7.1 |
||
ibm maximo asset management essentials 7.1 |
||
ibm maximo asset management 7.1.1.1 |
Vulmon