Caching of HTTPS Responses Vulnerability in IBM Maximo Asset Management

Caching of HTTPS Responses Vulnerability in IBM Maximo Asset Management

CVE-2015-1951 · LOW Severity

AV:L/AC:L/AU:N/C:P/I:N/A:N

IBM Maximo Asset Management 7.1 through 7.1.1.13, 7.5.0 before 7.5.0.8 IFIX001, and 7.6.0 before 7.6.0.0 IFIX005 does not prevent caching of HTTPS responses, which allows physically proximate attackers to obtain sensitive local-cache information by leveraging an unattended workstation.

Learn more about our Physical Security Assessment.