Vulnerability Description
IBM Maximo Asset Management 7.5, Maximo Asset Management Essentials 7.5, and SmartCloud Control Desk 7.5 allow remote authenticated users to gain privileges via vectors related to an import operation.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ibm | Maximo Asset Management | 7.5.0.0 |
| Ibm | Maximo Asset Management Essentials | 7.5.0.0 |
| Ibm | Smartcloud Control Desk | 7.5.0.0 |
Related Weaknesses (CWE)
References
- http://www-01.ibm.com/support/docview.wss?uid=swg1IV27329
- http://www-01.ibm.com/support/docview.wss?uid=swg21625624Vendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/80748
- http://www-01.ibm.com/support/docview.wss?uid=swg1IV27329
- http://www-01.ibm.com/support/docview.wss?uid=swg21625624Vendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/80748
FAQ
What is CVE-2012-6356?
CVE-2012-6356 is a vulnerability with a CVSS score of 6.5 (MEDIUM). IBM Maximo Asset Management 7.5, Maximo Asset Management Essentials 7.5, and SmartCloud Control Desk 7.5 allow remote authenticated users to gain privileges via vectors related to an import operation.
How severe is CVE-2012-6356?
CVE-2012-6356 has been rated MEDIUM with a CVSS base score of 6.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2012-6356?
Check the references section above for vendor advisories and patch information. Affected products include: Ibm Maximo Asset Management, Ibm Maximo Asset Management Essentials, Ibm Smartcloud Control Desk.