CVE-2015-7448
Description
SQL injection vulnerability in IBM Maximo Asset Management 7.1 through 7.1.1.13, 7.5.0 before 7.5.0.9 IFIX003, and 7.6.0 before 7.6.0.3 IFIX001; Maximo Asset Management 7.5.0 before 7.5.0.9 IFIX003, 7.5.1, and 7.6.0 before 7.6.0.3 IFIX001 for SmartCloud Control Desk; and Maximo Asset Management 7.1 through 7.1.1.13 and 7.2 for Tivoli IT Asset Management for IT and certain other products allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors.
Risk Information
Base Score
5.4
MODERATE
Vector
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N
EPSS Score
Exploitation Probability
0.126
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Multiple Vulnerabilities are affected in Maximo Asset Management 7.1 | Windows |
| Multiple Vulnerabilities are affected in Maximo Asset Management 7.5.0.0 | Windows |
| Multiple Vulnerabilities are affected in Maximo Asset Management 7.1.1 | Windows |
| Multiple Vulnerabilities are affected in Maximo Asset Management 7.1.1.1 | Windows |
| Multiple Vulnerabilities are affected in Maximo Asset Management 7.1.1.10 | Windows |
| Multiple Vulnerabilities are affected in Maximo Asset Management 7.1.1.11 | Windows |
| Multiple Vulnerabilities are affected in Maximo Asset Management 7.1.1.2 | Windows |
| Multiple Vulnerabilities are affected in Maximo Asset Management 7.1.1.5 | Windows |
| Multiple Vulnerabilities are affected in Maximo Asset Management 7.1.1.6 | Windows |
| Multiple Vulnerabilities are affected in Maximo Asset Management 7.1.1.7 | Windows |
| Multiple Vulnerabilities are affected in Maximo Asset Management 7.1.1.8 | Windows |
| Multiple Vulnerabilities are affected in Maximo Asset Management 7.1.1.9 | Windows |
| Multiple Vulnerabilities are affected in Maximo Asset Management 7.5.0.1 | Windows |
| Multiple Vulnerabilities are affected in Maximo Asset Management 7.5.0.2 | Windows |
| Multiple Vulnerabilities are affected in Maximo Asset Management 7.1.1.12 | Windows |
| Multiple Vulnerabilities are affected in Maximo Asset Management 7.5.0.3 | Windows |
| Multiple Vulnerabilities are affected in Maximo Asset Management 7.5.0.4 | Windows |
| Multiple Vulnerabilities are affected in Maximo Asset Management 7.5.0.5 | Windows |
| Multiple Vulnerabilities are affected in Maximo Asset Management 7.5.0.6 | Windows |
| Multiple Vulnerabilities are affected in Maximo Asset Management 7.1.1.13 | Windows |
| Multiple Vulnerabilities are affected in Maximo Asset Management 7.5.0.7 | Windows |
| Multiple Vulnerabilities are affected in Maximo Asset Management 7.5.0.8 | Windows |
| Multiple Vulnerabilities are affected in Maximo Asset Management 7.6.0.0 | Windows |
| Multiple Vulnerabilities are affected in Maximo Asset Management 7.5.0.9 | Windows |
| Multiple Vulnerabilities are affected in Maximo Asset Management 7.6.0.1 | Windows |
| Multiple Vulnerabilities are affected in Maximo Asset Management 7.6.0.2 | Windows |
| Multiple Vulnerabilities are affected in Maximo Asset Management 7.6.0.3 | Windows |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234