Vulnerability Description
IBM Maximo Asset Management 7.5, Maximo Asset Management Essentials 7.5, and SmartCloud Control Desk 7.5 allow remote authenticated users to gain privileges and bypass intended restrictions on asset-lookup operations via unspecified vectors.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ibm | Maximo Asset Management | 7.5.0.0 |
| Ibm | Maximo Asset Management Essentials | 7.5.0.0 |
| Ibm | Smartcloud Control Desk | 7.5.0.0 |
Related Weaknesses (CWE)
References
- http://www-01.ibm.com/support/docview.wss?uid=swg1IV23511
- http://www-01.ibm.com/support/docview.wss?uid=swg21625624Vendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/80749
- http://www-01.ibm.com/support/docview.wss?uid=swg1IV23511
- http://www-01.ibm.com/support/docview.wss?uid=swg21625624Vendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/80749
FAQ
What is CVE-2012-6357?
CVE-2012-6357 is a vulnerability with a CVSS score of 6.5 (MEDIUM). IBM Maximo Asset Management 7.5, Maximo Asset Management Essentials 7.5, and SmartCloud Control Desk 7.5 allow remote authenticated users to gain privileges and bypass intended restrictions on asset-l...
How severe is CVE-2012-6357?
CVE-2012-6357 has been rated MEDIUM with a CVSS base score of 6.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2012-6357?
Check the references section above for vendor advisories and patch information. Affected products include: Ibm Maximo Asset Management, Ibm Maximo Asset Management Essentials, Ibm Smartcloud Control Desk.