Vulnerability Description
IBM Maximo Asset Management 7.x before 7.5.0.6 and SmartCloud Control Desk 7.x before 7.5.0.3 and 7.5.1.x before 7.5.1.2 allow remote authenticated users to bypass intended access restrictions, and read communication logs associated with unrelated records, via unspecified vectors.
CVSS Score
LOW
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ibm | Maximo Asset Management | 7.1 |
| Ibm | Smartcloud Control Desk | 7.0 |
Related Weaknesses (CWE)
References
- http://www-01.ibm.com/support/docview.wss?uid=swg1IV46745
- http://www-01.ibm.com/support/docview.wss?uid=swg21670870
- https://exchange.xforce.ibmcloud.com/vulnerabilities/88308
- http://www-01.ibm.com/support/docview.wss?uid=swg1IV46745
- http://www-01.ibm.com/support/docview.wss?uid=swg21670870
- https://exchange.xforce.ibmcloud.com/vulnerabilities/88308
FAQ
What is CVE-2013-5460?
CVE-2013-5460 is a vulnerability with a CVSS score of 3.5 (LOW). IBM Maximo Asset Management 7.x before 7.5.0.6 and SmartCloud Control Desk 7.x before 7.5.0.3 and 7.5.1.x before 7.5.1.2 allow remote authenticated users to bypass intended access restrictions, and re...
How severe is CVE-2013-5460?
CVE-2013-5460 has been rated LOW with a CVSS base score of 3.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2013-5460?
Check the references section above for vendor advisories and patch information. Affected products include: Ibm Maximo Asset Management, Ibm Smartcloud Control Desk.