Lucene search
HistoryOct 01, 2013 - 11:14 a.m.
CVE-2013-4020
ibm
maximo
asset management
remote
authenticated
bypass
cve-2013-4020
nvd
4 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:S/C:P/I:N/A:N
6.2 Medium
AI Score
Confidence
Low
0.002 Low
EPSS
Percentile
53.1%
IBM Maximo Asset Management 6.2 through 6.2.8, 7.1 through 7.1.1.12, and 7.5 before 7.5.0.3 allows remote authenticated users to bypass intended access restrictions via unspecified vectors.
Affected configurations
Node
ibmmaximo_asset_managementMatch7.5.0.0
ORibmmaximo_asset_managementMatch7.5.0.1
ORibmmaximo_asset_managementMatch7.5.0.2
Node
ibmmaximo_asset_managementMatch6.2
ORibmmaximo_asset_managementMatch6.2.1
ORibmmaximo_asset_managementMatch6.2.2
ORibmmaximo_asset_managementMatch6.2.3
ORibmmaximo_asset_managementMatch6.2.4
ORibmmaximo_asset_managementMatch6.2.5
ORibmmaximo_asset_managementMatch6.2.6
ORibmmaximo_asset_managementMatch6.2.6.1
ORibmmaximo_asset_managementMatch6.2.7
Node
ibmmaximo_asset_managementMatch7.1
ORibmmaximo_asset_managementMatch7.1.1
ORibmmaximo_asset_managementMatch7.1.1.1
ORibmmaximo_asset_managementMatch7.1.1.2
ORibmmaximo_asset_managementMatch7.1.1.5
ORibmmaximo_asset_managementMatch7.1.1.6
ORibmmaximo_asset_managementMatch7.1.1.7
ORibmmaximo_asset_managementMatch7.1.1.8
ORibmmaximo_asset_managementMatch7.1.1.9
ORibmmaximo_asset_managementMatch7.1.1.10
ORibmmaximo_asset_managementMatch7.1.1.11
Related
prion
prion
Code injection
2013-10-01 11:14:00
cvelist
cvelist
CVE-2013-4020
2013-10-01 10:00:00
nvd
nvd
CVE-2013-4020
2013-10-01 11:14:43
ibm
ibm
4 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:S/C:P/I:N/A:N
6.2 Medium
AI Score
Confidence
Low
0.002 Low
EPSS
Percentile
53.1%
Related for CVE-2013-4020