CVE-2012-3313 in Tivoli Federated Identity Managerinfo

Summary

Cross-site scripting (XSS) vulnerability in IBM Maximo Asset Management 6.2 through 7.5, as used in SmartCloud Control Desk, Tivoli Asset Management for IT, Tivoli Service Request Manager, Maximo Service Desk, and Change and Configuration Management Database (CCMDB), allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Reservation

06/07/2012

Disclosure

09/10/2012

Moderation

VulDB entry created

Entries

CPE

ready

CWE

CWE-79

CVSS

4.3

EPSS

0.00256

CTI

0.00

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2012-3313
NVD	https://nvd.nist.gov/vuln/detail/CVE-2012-3313
CVE Details	https://www.cvedetails.com/cve/CVE-2012-3313/

◂ Previous Overview Next ▸

Do you know our Splunk app?

Download it now for free!