Cross-site scripting (XSS) vulnerability in IBM Maximo Asset Management 7.1 up to and including 7.1.1.8, and Maximo Asset Management 7.1 up to and including 7.1.1.8 and 7.2 for Tivoli IT Asset Management for IT and certain other products, allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than CVE-2015-0104, CVE-2015-0107, and CVE-2015-0108.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
ibm maximo asset management 7.1.1.8 |
||
ibm maximo asset management essentials 7.1 |
||
ibm tivoli service request manager 7.1 |
||
ibm tivoli service request manager 7.2 |
||
ibm maximo asset management 7.1.1.1 |
||
ibm maximo asset management 7.1.1.2 |
||
ibm maximo for transportation 7.1 |
||
ibm maximo for oil and gas 7.1 |
||
ibm change and configuration management database 7.1 |
||
ibm change and configuration management database 7.2 |
||
ibm maximo asset management 7.1.1.5 |
||
ibm maximo asset management 7.1.1.6 |
||
ibm maximo asset management 7.1.1.7 |
||
ibm maximo for life sciences 7.1 |
||
ibm maximo for utilities 7.1 |
||
ibm maximo asset management 7.1 |
||
ibm maximo asset management 7.1.1 |
||
ibm maximo for government 7.1 |
||
ibm maximo for nuclear power 7.1 |
||
ibm tivoli asset management for it 7.2 |
||
ibm tivoli asset management for it 7.1 |
Vulmon