漏洞标题
N/A
漏洞描述信息
"IBM Maximo Asset Management 7.5中的跨站脚本(XSS)漏洞,在SmartCloud Control Desk、Tivoli Asset Management for IT、Tivoli Service Request Manager、Maximo Service Desk和Change and Configuration Management Database (CCMDB)中,允许远程授权用户通过未指定的路径注入任意的Web脚本或HTML。"
CVSS信息
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
漏洞类别
N/A
漏洞标题
N/A
漏洞描述信息
Cross-site scripting (XSS) vulnerability in IBM Maximo Asset Management 7.5, as used in SmartCloud Control Desk, Tivoli Asset Management for IT, Tivoli Service Request Manager, Maximo Service Desk, and Change and Configuration Management Database (CCMDB), allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.
CVSS信息
N/A
漏洞类别
N/A
漏洞标题
IBM Maximo Asset Management 跨站脚本漏洞
漏洞描述信息
IBM Maximo Asset Management是美国IBM公司的一套综合性资产生命周期和维护管理解决方案。该方案能够在一个平台上管理所有类型的资产,如设施、交通运输等,并对这些资产实现单点控制。 使用在SmartCloud Control Desk、Tivoli Asset Management for IT、Tivoli Service Request Manager, Maximo Service Desk、Change and Configuration Management Databas
CVSS信息
N/A
漏洞类别
跨站脚本