1. Home
  2. CVE Database
  3. CVE-2013-6741
LOW · 3.5

CVE-2013-6741

IBM Maximo Asset Management 7.x before 7.1.1.7 LAFIX.20140319-0837 and 7.5.x before 7.5.0.5 IFIX006; SmartCloud Control Desk 7.x before 7.5.0.3 and 7.5.1.x before 7.5.1.2; and Tivoli IT Asset Manageme...

Vulnerability Description

IBM Maximo Asset Management 7.x before 7.1.1.7 LAFIX.20140319-0837 and 7.5.x before 7.5.0.5 IFIX006; SmartCloud Control Desk 7.x before 7.5.0.3 and 7.5.1.x before 7.5.1.2; and Tivoli IT Asset Management for IT, Tivoli Service Request Manager, Maximo Service Desk, and Change and Configuration Management Database (CCMDB) 7.x before 7.1.1.7 LAFIX.20140319-0837 allow remote authenticated users to obtain potentially sensitive stack-trace information by triggering a Birt error.

CVSS Score

3.5

LOW

AV:N/AC:M/Au:S/C:P/I:N/A:N
Confidentiality
PARTIAL
Integrity
NONE
Availability
NONE

Affected Products

VendorProductVersions
IbmMaximo Asset Management7.1
IbmChange And Configuration Management Database7.1.1.7
IbmMaximo Service Desk7.1.1.7
IbmTivoli Asset Management For It7.0
IbmTivoli It Asset Management For It7.1.1.7
IbmTivoli Service Request Manager7.0
IbmSmartcloud Control Desk7.0

Related Weaknesses (CWE)

CWE-200

References

FAQ

What is CVE-2013-6741?

CVE-2013-6741 is a vulnerability with a CVSS score of 3.5 (LOW). IBM Maximo Asset Management 7.x before 7.1.1.7 LAFIX.20140319-0837 and 7.5.x before 7.5.0.5 IFIX006; SmartCloud Control Desk 7.x before 7.5.0.3 and 7.5.1.x before 7.5.1.2; and Tivoli IT Asset Manageme...

How severe is CVE-2013-6741?

CVE-2013-6741 has been rated LOW with a CVSS base score of 3.5/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2013-6741?

Check the references section above for vendor advisories and patch information. Affected products include: Ibm Maximo Asset Management, Ibm Change And Configuration Management Database, Ibm Maximo Service Desk, Ibm Tivoli Asset Management For It, Ibm Tivoli It Asset Management For It.