IBM Maximo Asset Management 7.1 through 7.1.1.13, 7.5.0 before 7.5.0.8 IFIX005, and 7.6.0 before 7.6.0.2 IFIX002; Maximo Asset Management 7.5.0 before 7.5.0.8 IFIX005, 7.5.1, and 7.6.0 before 7.6.0.2 IFIX002 for SmartCloud Control Desk; and Maximo Asset Management 7.1 through 7.1.1.13 and 7.2 for Tivoli IT Asset Management for IT and certain other products allow remote authenticated users to bypass intended access restrictions and establish a login session by entering an expired password.
References
Link | Resource |
---|---|
http://www-01.ibm.com/support/docview.wss?uid=swg21969052 | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: ibm
Published: 2016-01-03T02:00:00
Updated: 2016-01-03T05:57:01
Reserved: 2015-06-24T00:00:00
Link: CVE-2015-5017
JSON object: View
NVD Information
Status : Analyzed
Published: 2016-01-03T05:59:03.897
Modified: 2016-01-06T19:42:25.300
Link: CVE-2015-5017
JSON object: View
Redhat Information
No data.
CWE