Information Disclosure Vulnerability in IBM Maximo Asset Management and SmartCloud Control Desk REST API

Information Disclosure Vulnerability in IBM Maximo Asset Management and SmartCloud Control Desk REST API

CVE-2015-7452 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:N/A:N

IBM Maximo Asset Management 7.5 before 7.5.0.9 FP9 and 7.6 before 7.6.0.3 FP3 and Maximo Asset Management 7.5 before 7.5.0.9 FP9, 7.5.1, and 7.6 before 7.6.0.3 FP3 for SmartCloud Control Desk allow remote authenticated users to obtain sensitive information via the REST API.

Learn more about our Api Penetration Testing.