CVE-2013-5460

IBM Maximo Asset Management 7.x before 7.5.0.6 and SmartCloud Control Desk 7.x before 7.5.0.3 and 7.5.1.x before 7.5.1.2 allow remote authenticated users to bypass intended access restrictions, and read communication logs associated with unrelated records, via unspecified vectors.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
3.5 UNKNOWN
NETWORK
MEDIUM
AV:N/AC:M/Au:S/C:P/I:N/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: Unknown
Affected Products (NVD)
VendorProductVersion
ibmmaximo_asset_management
7.1
ibmmaximo_asset_management
7.1.1
ibmmaximo_asset_management
7.1.1.1
ibmmaximo_asset_management
7.1.1.2
ibmmaximo_asset_management
7.1.1.5
ibmmaximo_asset_management
7.1.1.6
ibmmaximo_asset_management
7.1.1.7
ibmmaximo_asset_management
7.1.1.8
ibmmaximo_asset_management
7.1.1.9
ibmmaximo_asset_management
7.1.1.10
ibmmaximo_asset_management
7.1.1.11
ibmmaximo_asset_management
7.1.1.12
ibmmaximo_asset_management
7.1.2
ibmmaximo_asset_management
7.5.0.0
ibmmaximo_asset_management
7.5.0.1
ibmmaximo_asset_management
7.5.0.2
ibmmaximo_asset_management
7.5.0.3
ibmmaximo_asset_management
7.5.0.4
ibmmaximo_asset_management
7.5.0.5
ibmsmartcloud_control_desk
7.0
ibmsmartcloud_control_desk
7.5
ibmsmartcloud_control_desk
7.5.0.0
ibmsmartcloud_control_desk
7.5.0.1
ibmsmartcloud_control_desk
7.5.0.2
ibmsmartcloud_control_desk
7.5.1.0
ibmsmartcloud_control_desk
7.5.1.1
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://www-01.ibm.com/support/docview.wss?uid=swg1IV46745
http://www-01.ibm.com/support/docview.wss?uid=swg21670870
https://exchange.xforce.ibmcloud.com/vulnerabilities/88308
http://www-01.ibm.com/support/docview.wss?uid=swg1IV46745
http://www-01.ibm.com/support/docview.wss?uid=swg21670870
https://exchange.xforce.ibmcloud.com/vulnerabilities/88308