cbcvebase.
CVE-2016-5902
published 2017-02-08

CVE-2016-5902: IBM Maximo Asset Management is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus…

medium6.1CVSS 3.0
AVNACLPRNUIRSCCLILAN
IBM Maximo Asset Management is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session.

Affected

27 ranges· showing 25
VendorProductVersion rangeFixed in
ibmmaximo_asset_management
ibmmaximo_asset_management
ibmmaximo_asset_management
ibmmaximo_for_aviation
ibmmaximo_for_aviation
ibmmaximo_for_aviation
ibmmaximo_for_energy_optimization
ibmmaximo_for_energy_optimization
ibmmaximo_for_energy_optimization
ibmmaximo_for_government
ibmmaximo_for_government
ibmmaximo_for_government
ibmmaximo_for_life_sciences
ibmmaximo_for_life_sciences
ibmmaximo_for_life_sciences
ibmmaximo_for_nuclear_power
ibmmaximo_for_nuclear_power
ibmmaximo_for_nuclear_power
ibmmaximo_for_oil_and_gas
ibmmaximo_for_oil_and_gas
ibmmaximo_for_oil_and_gas
ibmmaximo_for_transportation
ibmmaximo_for_transportation
ibmmaximo_for_transportation
ibmmaximo_for_utilities