Information disclosure in Ibm Change_and_configuration_management_database

CVE-2015-5016

IBM Maximo Asset Management 7.1, 7.5, and 7.6; Maximo Asset Management Essentials 7.1 and 7.5; Control Desk 7.5 and 7.6; Tivoli Asset Management for IT 7.1 and 7.2; and certain other IBM products allow remote authenticated users to bypass…

Vulnerability class: Information Disclosure

EPSS: 0.010 (58.2th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 4.3 (Medium). Vector: CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N.

Affected products

Weakness classification (CWE)

References

Frequently asked questions

What is CVE-2015-5016?
CVE-2015-5016 is a medium-severity vulnerability in Ibm Change_and_configuration_management_database, classified under Information Disclosure. CVSS score: 4.3/10. Published 2018-03-27.
How severe is CVE-2015-5016?
Medium severity. CVSS v3 base score is 4.3 out of 10.