Privilege Escalation via Work Order in IBM Maximo Asset Management and Related Products

Privilege Escalation via Work Order in IBM Maximo Asset Management and Related Products

CVE-2012-6355 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:P/A:P

IBM Maximo Asset Management 6.2 through 7.5, Maximo Asset Management Essentials 6.2 through 7.5, Tivoli Asset Management for IT 6.2 through 7.2, Tivoli Service Request Manager 7.1 and 7.2, Maximo Service Desk 6.2, Change and Configuration Management Database (CCMDB) 7.1 and 7.2, and SmartCloud Control Desk 7.5 allow remote authenticated users to gain privileges via vectors related to a work order.

Learn more about our Cloud Audit.