Vulnerability CVE-2012-0195

Vulnerability CVE-2012-0195

Published: 2012-03-12 Modified: 2012-03-13

Description:

Type:

(Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting'))

CVSS Base Score	Impact Subscore	Exploitability Subscore
4.3/10	2.9/10	8.6/10

Affected software
IBM -> Maximo asset management
IBM -> Maximo asset management essentials
IBM -> Maximo service desk
IBM -> Tivoli asset management for it
IBM -> Tivoli change and configuration management database
IBM -> Trivoli service request manager

http://secunia.com/advisories/48299

http://secunia.com/advisories/48305

http://www-01.ibm.com/support/docview.wss?uid=swg1IV09198

http://www.ibm.com/support/docview.wss?uid=swg21584666

http://www.securityfocus.com/bid/52333

https://exchange.xforce.ibmcloud.com/vulnerabilities/72612