Cross-site scripting (XSS) vulnerability in the Start Center Layout and Configuration component in IBM Maximo Asset Management and Asset Management Essentials 6.2, 7.1, and 7.5; IBM Tivoli Asset Management for IT 6.2, 7.1, and 7.2; IBM Tivoli Service Request Manager 7.1 and 7.2; IBM Maximo Service Desk 6.2; and IBM Tivoli Change and Configuration Management Database (CCMDB) 6.2, 7.1, and 7.2 allows remote attackers to inject arbitrary web script or HTML via the display name.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: ibm
Published: 2012-03-13T01:00:00
Updated: 2024-08-06T18:16:19.457Z
Reserved: 2011-12-14T00:00:00
Link: CVE-2012-0195
Vulnrichment
No data.
NVD
Status : Modified
Published: 2012-03-13T03:12:26.197
Modified: 2024-11-21T01:34:33.660
Link: CVE-2012-0195
Redhat
No data.