IBM Maximo For Oil And Gas : Security vulnerabilities, CVEs xss, cross site scripting published in February 2015

CVE-2015-0109

Cross-site scripting (XSS) vulnerability in IBM Maximo Asset Management 7.1 through 7.1.1.8, and Maximo Asset Management 7.1 through 7.1.1.8 and 7.2 for Tivoli IT Asset Management for IT and certain other products, allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than CVE-2015-0104, CVE-2015-0107, and CVE-2015-0108.

Max CVSS

3.5

EPSS Score

0.06%

Published

2015-02-18

Updated

2017-09-08

CVE-2015-0108

Cross-site scripting (XSS) vulnerability in IBM Maximo Asset Management 7.1 through 7.1.1.8, and Maximo Asset Management 7.1 through 7.1.1.8 and 7.2 for Tivoli IT Asset Management for IT and certain other products, allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than CVE-2015-0104, CVE-2015-0107, and CVE-2015-0109.

Max CVSS

4.3

EPSS Score

0.13%

Published

2015-02-18

Updated

2017-09-08

2 vulnerabilities found

This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!

Accept Close

IBM » Maximo For Oil And Gas : Security Vulnerabilities, CVEs, Published In February 2015 (XSS) CVSS score >= 1

CVE-2015-0109

CVE-2015-0108