CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2015-4944

Cross-site scripting (XSS) vulnerability in IBM Maximo Asset Management 7.1 through 7.1.1.13, 7.5.0 before 7.5.0.8 IFIX003, and 7.6.0 before 7.6.0.1 IFIX001; Maximo Asset Management 7.5.x before 7.5.0.8 IFIX003 and 7.6.0 before 7.6.0.1 IFIX001 for SmartCloud Control Desk; and Maximo Asset Management 7.1 through 7.1.1.13 and 7.2 for Tivoli IT Asset Management for IT and certain other products allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 38.6%

CVSS Severity

CVSS v2 Score 3.5

References

Products affected by CVE-2015-4944

Ibm » Change And Configuration Management Database » Version: 7.1

cpe:2.3:a:ibm:change_and_configuration_management_database:7.1
Ibm » Change And Configuration Management Database » Version: 7.2

cpe:2.3:a:ibm:change_and_configuration_management_database:7.2
Ibm » Maximo Asset Management » Version: 7.1

cpe:2.3:a:ibm:maximo_asset_management:7.1
Ibm » Maximo Asset Management » Version: 7.1.1

cpe:2.3:a:ibm:maximo_asset_management:7.1.1
Ibm » Maximo Asset Management » Version: 7.1.1.1

cpe:2.3:a:ibm:maximo_asset_management:7.1.1.1
Ibm » Maximo Asset Management » Version: 7.1.1.10

cpe:2.3:a:ibm:maximo_asset_management:7.1.1.10
Ibm » Maximo Asset Management » Version: 7.1.1.11

cpe:2.3:a:ibm:maximo_asset_management:7.1.1.11
Ibm » Maximo Asset Management » Version: 7.1.1.12

cpe:2.3:a:ibm:maximo_asset_management:7.1.1.12
Ibm » Maximo Asset Management » Version: 7.1.1.13

cpe:2.3:a:ibm:maximo_asset_management:7.1.1.13
Ibm » Maximo Asset Management » Version: 7.1.1.2

cpe:2.3:a:ibm:maximo_asset_management:7.1.1.2
Ibm » Maximo Asset Management » Version: 7.1.1.5

cpe:2.3:a:ibm:maximo_asset_management:7.1.1.5
Ibm » Maximo Asset Management » Version: 7.1.1.6

cpe:2.3:a:ibm:maximo_asset_management:7.1.1.6
Ibm » Maximo Asset Management » Version: 7.1.1.7

cpe:2.3:a:ibm:maximo_asset_management:7.1.1.7
Ibm » Maximo Asset Management » Version: 7.1.1.8

cpe:2.3:a:ibm:maximo_asset_management:7.1.1.8
Ibm » Maximo Asset Management » Version: 7.1.1.9

cpe:2.3:a:ibm:maximo_asset_management:7.1.1.9
Ibm » Maximo Asset Management » Version: 7.5.0.0

cpe:2.3:a:ibm:maximo_asset_management:7.5.0.0
Ibm » Maximo Asset Management » Version: 7.5.0.1

cpe:2.3:a:ibm:maximo_asset_management:7.5.0.1
Ibm » Maximo Asset Management » Version: 7.5.0.2

cpe:2.3:a:ibm:maximo_asset_management:7.5.0.2
Ibm » Maximo Asset Management » Version: 7.5.0.3

cpe:2.3:a:ibm:maximo_asset_management:7.5.0.3
Ibm » Maximo Asset Management » Version: 7.5.0.4

cpe:2.3:a:ibm:maximo_asset_management:7.5.0.4
Ibm » Maximo Asset Management » Version: 7.5.0.5

cpe:2.3:a:ibm:maximo_asset_management:7.5.0.5
Ibm » Maximo Asset Management » Version: 7.5.0.6

cpe:2.3:a:ibm:maximo_asset_management:7.5.0.6
Ibm » Maximo Asset Management » Version: 7.5.0.7

cpe:2.3:a:ibm:maximo_asset_management:7.5.0.7
Ibm » Maximo Asset Management » Version: 7.5.0.8

cpe:2.3:a:ibm:maximo_asset_management:7.5.0.8
Ibm » Maximo Asset Management » Version: 7.6.0.0

cpe:2.3:a:ibm:maximo_asset_management:7.6.0.0
Ibm » Maximo Asset Management Essentials » Version: 7.1

cpe:2.3:a:ibm:maximo_asset_management_essentials:7.1
Ibm » Maximo Asset Management Essentials » Version: 7.5

cpe:2.3:a:ibm:maximo_asset_management_essentials:7.5
Ibm » Maximo For Energy Optimization » Version: 7.1

cpe:2.3:a:ibm:maximo_for_energy_optimization:7.1
Ibm » Maximo For Government » Version: 7.1

cpe:2.3:a:ibm:maximo_for_government:7.1
Ibm » Maximo For Government » Version: 7.5.0.0

cpe:2.3:a:ibm:maximo_for_government:7.5.0.0
Ibm » Maximo For Government » Version: 7.5.0.1

cpe:2.3:a:ibm:maximo_for_government:7.5.0.1
Ibm » Maximo For Government » Version: 7.5.0.2

cpe:2.3:a:ibm:maximo_for_government:7.5.0.2
Ibm » Maximo For Government » Version: 7.5.0.3

cpe:2.3:a:ibm:maximo_for_government:7.5.0.3
Ibm » Maximo For Government » Version: 7.5.0.4

cpe:2.3:a:ibm:maximo_for_government:7.5.0.4
Ibm » Maximo For Government » Version: 7.5.0.5

cpe:2.3:a:ibm:maximo_for_government:7.5.0.5
Ibm » Maximo For Government » Version: 7.5.0.6

cpe:2.3:a:ibm:maximo_for_government:7.5.0.6
Ibm » Maximo For Life Sciences » Version: 7.1

cpe:2.3:a:ibm:maximo_for_life_sciences:7.1
Ibm » Maximo For Life Sciences » Version: 7.5.0.0

cpe:2.3:a:ibm:maximo_for_life_sciences:7.5.0.0
Ibm » Maximo For Life Sciences » Version: 7.5.0.1

cpe:2.3:a:ibm:maximo_for_life_sciences:7.5.0.1
Ibm » Maximo For Life Sciences » Version: 7.5.0.2

cpe:2.3:a:ibm:maximo_for_life_sciences:7.5.0.2
Ibm » Maximo For Life Sciences » Version: 7.5.0.3

cpe:2.3:a:ibm:maximo_for_life_sciences:7.5.0.3
Ibm » Maximo For Life Sciences » Version: 7.5.0.4

cpe:2.3:a:ibm:maximo_for_life_sciences:7.5.0.4
Ibm » Maximo For Life Sciences » Version: 7.5.0.5

cpe:2.3:a:ibm:maximo_for_life_sciences:7.5.0.5
Ibm » Maximo For Life Sciences » Version: 7.5.0.6

cpe:2.3:a:ibm:maximo_for_life_sciences:7.5.0.6
Ibm » Maximo For Nuclear Power » Version: 7.1

cpe:2.3:a:ibm:maximo_for_nuclear_power:7.1
Ibm » Maximo For Nuclear Power » Version: 7.5.0.0

cpe:2.3:a:ibm:maximo_for_nuclear_power:7.5.0.0
Ibm » Maximo For Nuclear Power » Version: 7.5.0.1

cpe:2.3:a:ibm:maximo_for_nuclear_power:7.5.0.1
Ibm » Maximo For Nuclear Power » Version: 7.5.0.2

cpe:2.3:a:ibm:maximo_for_nuclear_power:7.5.0.2
Ibm » Maximo For Nuclear Power » Version: 7.5.0.3

cpe:2.3:a:ibm:maximo_for_nuclear_power:7.5.0.3
Ibm » Maximo For Nuclear Power » Version: 7.5.0.4

cpe:2.3:a:ibm:maximo_for_nuclear_power:7.5.0.4
Ibm » Maximo For Nuclear Power » Version: 7.5.0.5

cpe:2.3:a:ibm:maximo_for_nuclear_power:7.5.0.5
Ibm » Maximo For Nuclear Power » Version: 7.5.0.6

cpe:2.3:a:ibm:maximo_for_nuclear_power:7.5.0.6
Ibm » Maximo For Oil And Gas » Version: 7.1

cpe:2.3:a:ibm:maximo_for_oil_and_gas:7.1
Ibm » Maximo For Oil And Gas » Version: 7.5.0.0

cpe:2.3:a:ibm:maximo_for_oil_and_gas:7.5.0.0
Ibm » Maximo For Oil And Gas » Version: 7.5.0.1

cpe:2.3:a:ibm:maximo_for_oil_and_gas:7.5.0.1
Ibm » Maximo For Oil And Gas » Version: 7.5.0.2

cpe:2.3:a:ibm:maximo_for_oil_and_gas:7.5.0.2
Ibm » Maximo For Oil And Gas » Version: 7.5.0.3

cpe:2.3:a:ibm:maximo_for_oil_and_gas:7.5.0.3
Ibm » Maximo For Oil And Gas » Version: 7.5.0.4

cpe:2.3:a:ibm:maximo_for_oil_and_gas:7.5.0.4
Ibm » Maximo For Oil And Gas » Version: 7.5.0.5

cpe:2.3:a:ibm:maximo_for_oil_and_gas:7.5.0.5
Ibm » Maximo For Oil And Gas » Version: 7.5.0.6

cpe:2.3:a:ibm:maximo_for_oil_and_gas:7.5.0.6
Ibm » Maximo For Transportation » Version: 7.1

cpe:2.3:a:ibm:maximo_for_transportation:7.1
Ibm » Maximo For Transportation » Version: 7.5.0.0

cpe:2.3:a:ibm:maximo_for_transportation:7.5.0.0
Ibm » Maximo For Transportation » Version: 7.5.0.1

cpe:2.3:a:ibm:maximo_for_transportation:7.5.0.1
Ibm » Maximo For Transportation » Version: 7.5.0.2

cpe:2.3:a:ibm:maximo_for_transportation:7.5.0.2
Ibm » Maximo For Transportation » Version: 7.5.0.3

cpe:2.3:a:ibm:maximo_for_transportation:7.5.0.3
Ibm » Maximo For Transportation » Version: 7.5.0.4

cpe:2.3:a:ibm:maximo_for_transportation:7.5.0.4
Ibm » Maximo For Transportation » Version: 7.5.0.5

cpe:2.3:a:ibm:maximo_for_transportation:7.5.0.5
Ibm » Maximo For Transportation » Version: 7.5.0.6

cpe:2.3:a:ibm:maximo_for_transportation:7.5.0.6
Ibm » Maximo For Utilities » Version: 7.1

cpe:2.3:a:ibm:maximo_for_utilities:7.1
Ibm » Maximo For Utilities » Version: 7.5.0.0

cpe:2.3:a:ibm:maximo_for_utilities:7.5.0.0
Ibm » Maximo For Utilities » Version: 7.5.0.1

cpe:2.3:a:ibm:maximo_for_utilities:7.5.0.1
Ibm » Maximo For Utilities » Version: 7.5.0.2

cpe:2.3:a:ibm:maximo_for_utilities:7.5.0.2
Ibm » Maximo For Utilities » Version: 7.5.0.3

cpe:2.3:a:ibm:maximo_for_utilities:7.5.0.3
Ibm » Maximo For Utilities » Version: 7.5.0.4

cpe:2.3:a:ibm:maximo_for_utilities:7.5.0.4
Ibm » Maximo For Utilities » Version: 7.5.0.5

cpe:2.3:a:ibm:maximo_for_utilities:7.5.0.5
Ibm » Maximo For Utilities » Version: 7.5.0.6

cpe:2.3:a:ibm:maximo_for_utilities:7.5.0.6
Ibm » Smartcloud Control Desk » Version: 7.5

cpe:2.3:a:ibm:smartcloud_control_desk:7.5
Ibm » Tivoli Asset Management For It » Version: 7.1

cpe:2.3:a:ibm:tivoli_asset_management_for_it:7.1
Ibm » Tivoli Asset Management For It » Version: 7.2

cpe:2.3:a:ibm:tivoli_asset_management_for_it:7.2
Ibm » Tivoli Service Request Manager » Version: 7.1.0

cpe:2.3:a:ibm:tivoli_service_request_manager:7.1.0
Ibm » Tivoli Service Request Manager » Version: 7.2.0.0

cpe:2.3:a:ibm:tivoli_service_request_manager:7.2.0.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2015-4944

Products

Pricing

Contact Us