CVE-2014-0849

Sažetak

IBM Maximo Asset Management 7.x before 7.5.0.3 IFIX027 and SmartCloud Control Desk 7.x before 7.5.0.3 and 7.5.1.x before 7.5.1.2 allow remote authenticated users to gain privileges by leveraging membership in two security groups.

Reference

http://www-01.ibm.com/support/docview.wss?uid=swg1IV53952
http://www-01.ibm.com/support/docview.wss?uid=swg21670870
https://exchange.xforce.ibmcloud.com/vulnerabilities/90738

CVSS

Base:	6.0
Impact:	6.4
Exploitability:	6.8

Pristup

Vektor	Složenost	Autentikacija
NETWORK	MEDIUM	SINGLE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	PARTIAL	PARTIAL

CVSS vektor

AV:N/AC:M/Au:S/C:P/I:P/A:P

Zadnje važnije ažuriranje

29-08-2017 - 01:34

Objavljeno

26-05-2014 - 16:55