CVE-2013-3323 (change_and_configuration_management_database, maximo_asset_management, maximo_asset_management_essentials, maximo_for_government, maximo_for_life_sciences, maximo_for_nuclear_power, maximo_for_oil_and_gas, maximo_for_transportation, maximo_for_utilities, maximo_service_desk, smartcloud_control_desk, tivoli_asset_management_for_it, tivoli_service_request_manager)

A Privilege Escalation Vulnerability exists in IBM Maximo Asset Management 7.5, 7.1, and 6.2, when WebSeal with Basic Authentication is used, due to a failure to invalidate the authentication session, which could let a malicious user obtain unauthorized access.

View Full Alert

Leave a Reply