CVE-2013-4020

EUVD-2013-3951
IBM Maximo Asset Management 6.2 through 6.2.8, 7.1 through 7.1.1.12, and 7.5 before 7.5.0.3 allows remote authenticated users to bypass intended access restrictions via unspecified vectors.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
4 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:S/C:P/I:N/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 41%
Affected Products (NVD)
VendorProductVersion
ibmmaximo_asset_management
7.5.0.0
ibmmaximo_asset_management
7.5.0.1
ibmmaximo_asset_management
7.5.0.2
ibmmaximo_asset_management
6.2
ibmmaximo_asset_management
6.2.1
ibmmaximo_asset_management
6.2.2
ibmmaximo_asset_management
6.2.3
ibmmaximo_asset_management
6.2.4
ibmmaximo_asset_management
6.2.5
ibmmaximo_asset_management
6.2.6
ibmmaximo_asset_management
6.2.6.1
ibmmaximo_asset_management
6.2.7
ibmmaximo_asset_management
7.1
ibmmaximo_asset_management
7.1.1
ibmmaximo_asset_management
7.1.1.1
ibmmaximo_asset_management
7.1.1.2
ibmmaximo_asset_management
7.1.1.5
ibmmaximo_asset_management
7.1.1.6
ibmmaximo_asset_management
7.1.1.7
ibmmaximo_asset_management
7.1.1.8
ibmmaximo_asset_management
7.1.1.9
ibmmaximo_asset_management
7.1.1.10
ibmmaximo_asset_management
7.1.1.11
𝑥
= Vulnerable software versions
References
http://secunia.com/advisories/55068
http://secunia.com/advisories/55070
http://www-01.ibm.com/support/docview.wss?uid=swg1IV42775
http://www-01.ibm.com/support/docview.wss?uid=swg21651085
https://exchange.xforce.ibmcloud.com/vulnerabilities/85825
http://secunia.com/advisories/55068
http://secunia.com/advisories/55070
http://www-01.ibm.com/support/docview.wss?uid=swg1IV42775
http://www-01.ibm.com/support/docview.wss?uid=swg21651085
https://exchange.xforce.ibmcloud.com/vulnerabilities/85825