IBM Security Bulletin: IBM Maximo Asset Management could allow an authenticated user to change work orders that the user should not have access to change (CVE-2015-7395 )
|
Información sobre el sistema
|
|
|
Software afectado |
IBM |
Descripción
|
IBM Maximo Asset Management contains a vulnerability which could allow an authenticated user to change work orders that the user should not have access to change due to improper access control. This vulnerability could allow a local attacker to compromise data integrity. The vulnerability affects Maximo Asset Management, Maximo Asset Management Essentials, Maximo Industry Solutions (including Maximo for Energy Optimization, Maximo for Government, Maximo for Nuclear Power, Maximo for
More info:
https://www-304.ibm.com/connections/blogs/PSIRT/entry/ibm_security_bulletin_ibm_maximo_asset_management_could_allow_an_authenticated_user_to_change_work_orders_that_the_user_should_not_have_access_to_change_cve_2015_7395?lang=en_us |
Identificadores estándar
|
Propiedad |
Valor |
CVE |
CVE-2015-7395 ,CVE-2013-5123 ,CVE-2014-8991 ,CVE-2015-5177 ,CVE-2013-2037 and CVE-2015-4276. |