Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm tivoli change and configuration management database - vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2012-0715
Cross-site scripting (XSS) vulnerability in the Gantt applet viewer in IBM Tivoli Change and Configuration Management Database (CCMDB) 7.2.1 and IBM ILOG JViews Gantt allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Ibm Tivoli Change And Configuration Management Database 7.2.1
Ibm Ilog Jviews Gantt -
5
CVSSv2
CVE-2011-1394
IBM Maximo Asset Management and Asset Management Essentials 6.2, 7.1, and 7.5; IBM Tivoli Asset Management for IT 6.2, 7.1, and 7.2; IBM Tivoli Service Request Manager 7.1 and 7.2; IBM Maximo Service Desk 6.2; and IBM Tivoli Change and Configuration Management Database (CCMDB) 6....
Ibm Maximo Asset Management 6.2
Ibm Maximo Asset Management 7.5
Ibm Maximo Asset Management 7.1
Ibm Maximo Asset Management Essentials 6.2
Ibm Maximo Asset Management Essentials 7.1
Ibm Maximo Asset Management Essentials 7.5
Ibm Tivoli Asset Management For It 6.2
Ibm Tivoli Asset Management For It 7.1
Ibm Tivoli Asset Management For It 7.2
Ibm Trivoli Service Request Manager 7.1
Ibm Trivoli Service Request Manager 7.2
Ibm Maximo Service Desk 6.2
Ibm Tivoli Change And Configuration Management Database 7.2
Ibm Tivoli Change And Configuration Management Database 6.2
Ibm Tivoli Change And Configuration Management Database 7.1
6.8
CVSSv2
CVE-2011-1397
Cross-site request forgery (CSRF) vulnerability in the Labor Reporting page in IBM Maximo Asset Management and Asset Management Essentials 6.2, 7.1, and 7.5; IBM Tivoli Asset Management for IT 6.2, 7.1, and 7.2; IBM Tivoli Service Request Manager 7.1 and 7.2; IBM Maximo Service D...
Ibm Maximo Asset Management 6.2
Ibm Maximo Asset Management 7.5
Ibm Maximo Asset Management 7.1
Ibm Maximo Asset Management Essentials 7.5
Ibm Maximo Asset Management Essentials 6.2
Ibm Maximo Asset Management Essentials 7.1
Ibm Tivoli Asset Management For It 7.1
Ibm Tivoli Asset Management For It 7.2
Ibm Tivoli Asset Management For It 6.2
Ibm Trivoli Service Request Manager 7.1
Ibm Trivoli Service Request Manager 7.2
Ibm Maximo Service Desk 6.2
Ibm Tivoli Change And Configuration Management Database 6.2
Ibm Tivoli Change And Configuration Management Database 7.1
Ibm Tivoli Change And Configuration Management Database 7.2
6.5
CVSSv2
CVE-2011-4816
SQL injection vulnerability in the KPI component in IBM Maximo Asset Management and Asset Management Essentials 6.2, 7.1, and 7.5; IBM Tivoli Asset Management for IT 6.2, 7.1, and 7.2; IBM Tivoli Service Request Manager 7.1 and 7.2; IBM Maximo Service Desk 6.2; and IBM Tivoli Cha...
Ibm Maximo Asset Management 6.2
Ibm Maximo Asset Management 7.5
Ibm Maximo Asset Management 7.1
Ibm Maximo Asset Management Essentials 7.5
Ibm Maximo Asset Management Essentials 6.2
Ibm Maximo Asset Management Essentials 7.1
Ibm Tivoli Asset Management For It 6.2
Ibm Tivoli Asset Management For It 7.1
Ibm Tivoli Asset Management For It 7.2
Ibm Trivoli Service Request Manager 7.2
Ibm Trivoli Service Request Manager 7.1
Ibm Maximo Service Desk 6.2
Ibm Tivoli Change And Configuration Management Database 6.2
Ibm Tivoli Change And Configuration Management Database 7.1
Ibm Tivoli Change And Configuration Management Database 7.2
4.3
CVSSv2
CVE-2012-0195
Cross-site scripting (XSS) vulnerability in the Start Center Layout and Configuration component in IBM Maximo Asset Management and Asset Management Essentials 6.2, 7.1, and 7.5; IBM Tivoli Asset Management for IT 6.2, 7.1, and 7.2; IBM Tivoli Service Request Manager 7.1 and 7.2; ...
Ibm Maximo Asset Management 7.5
Ibm Maximo Asset Management 7.1
Ibm Maximo Asset Management 6.2
Ibm Maximo Asset Management Essentials 7.1
Ibm Maximo Asset Management Essentials 7.5
Ibm Maximo Asset Management Essentials 6.2
Ibm Tivoli Asset Management For It 7.2
Ibm Tivoli Asset Management For It 6.2
Ibm Tivoli Asset Management For It 7.1
Ibm Trivoli Service Request Manager 7.2
Ibm Trivoli Service Request Manager 7.1
Ibm Maximo Service Desk 6.2
Ibm Tivoli Change And Configuration Management Database 7.1
Ibm Tivoli Change And Configuration Management Database 7.2
Ibm Tivoli Change And Configuration Management Database 6.2
4
CVSSv2
CVE-2011-4817
The About option on the Help menu in IBM Maximo Asset Management and Asset Management Essentials 6.2, 7.1, and 7.5; IBM Tivoli Asset Management for IT 6.2, 7.1, and 7.2; IBM Tivoli Service Request Manager 7.1 and 7.2; IBM Maximo Service Desk 6.2; and IBM Tivoli Change and Configu...
Ibm Maximo Asset Management 6.2
Ibm Maximo Asset Management 7.5
Ibm Maximo Asset Management 7.1
Ibm Maximo Asset Management Essentials 7.5
Ibm Maximo Asset Management Essentials 6.2
Ibm Maximo Asset Management Essentials 7.1
Ibm Tivoli Asset Management For It 6.2
Ibm Tivoli Asset Management For It 7.1
Ibm Tivoli Asset Management For It 7.2
Ibm Trivoli Service Request Manager 7.1
Ibm Trivoli Service Request Manager 7.2
Ibm Maximo Service Desk 6.2
Ibm Tivoli Change And Configuration Management Database 6.2
Ibm Tivoli Change And Configuration Management Database 7.1
Ibm Tivoli Change And Configuration Management Database 7.2
3.5
CVSSv2
CVE-2016-6072
IBM Maximo Asset Management is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session.
Ibm Tivoli Integration Composer -
Ibm Tivoli Service Request Manager -
Ibm Smartcloud Control Desk -
Ibm Maximo For Life Sciences -
Ibm Tivoli Asset Management For It -
Ibm Maximo Asset Management 7.6.0.0
Ibm Maximo For Transportation -
Ibm Maximo For Nuclear Power -
Ibm Maximo For Aviation -
Ibm Maximo For Oil And Gas -
Ibm Maximo For Utilities -
Ibm Tivoli Change And Configuration Management Database -
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
CVE-2006-4304
CVE-2023-26603
CVE-2024-28327
CVE-2023-50363
CVE-2024-21905
template injection
CVE-2024-3400
cross-site request forgery
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started