漏洞标题
N/A
漏洞描述信息
"在IBM Maximo Asset Management和Asset Management Essentials 6.2、7.1和7.5中的KPI组件中存在SQL注入漏洞;IBM Tivoli Asset Management for IT 6.2、7.1和7.2;IBM Tivoli Service Request Manager 7.1和7.2;IBM Maximo Service Desk 6.2;以及IBM Tivoli Change and Configuration Management Database (CCMDB) 6.2、7.1和7.2,允许远程授权用户通过未定义的向量执行任意SQL命令。"
CVSS信息
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
漏洞类别
N/A
漏洞标题
N/A
漏洞描述信息
SQL injection vulnerability in the KPI component in IBM Maximo Asset Management and Asset Management Essentials 6.2, 7.1, and 7.5; IBM Tivoli Asset Management for IT 6.2, 7.1, and 7.2; IBM Tivoli Service Request Manager 7.1 and 7.2; IBM Maximo Service Desk 6.2; and IBM Tivoli Change and Configuration Management Database (CCMDB) 6.2, 7.1, and 7.2 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors.
CVSS信息
N/A
漏洞类别
N/A
漏洞标题
IBM Maximo Asset Management SQL注入漏洞
漏洞描述信息
IBM Maximo Asset Management软件为所有资产类型提供综合性资产生命周期和维护管理。 IBM Maximo Asset Management和Asset Management Essentials 6.2版本、7.1版本和7.5版本,IT 6.2版本、7.1版本和7.2版本的IBM Tivoli Asset Management,IBM Tivoli Service Request Manager 7.1版本和7.2版本,IBM Maximo Service Desk 6.2版本和I
CVSS信息
N/A
漏洞类别
SQL注入