CVE-2014-0849

IBM Maximo Asset Management 7.x before 7.5.0.3 IFIX027 and SmartCloud Control Desk 7.x before 7.5.0.3 and 7.5.1.x before 7.5.1.2 allow remote authenticated users to gain privileges by leveraging membership in two security groups.

Affected Software

Name	Vendor	Start Version	End Version
Maximo_asset_management	Ibm	7.1 (including)	7.1 (including)
Maximo_asset_management	Ibm	7.1.1 (including)	7.1.1 (including)
Maximo_asset_management	Ibm	7.1.1.1 (including)	7.1.1.1 (including)
Maximo_asset_management	Ibm	7.1.1.2 (including)	7.1.1.2 (including)
Maximo_asset_management	Ibm	7.1.1.5 (including)	7.1.1.5 (including)
Maximo_asset_management	Ibm	7.1.1.6 (including)	7.1.1.6 (including)
Maximo_asset_management	Ibm	7.1.1.7 (including)	7.1.1.7 (including)
Maximo_asset_management	Ibm	7.1.1.8 (including)	7.1.1.8 (including)
Maximo_asset_management	Ibm	7.1.1.9 (including)	7.1.1.9 (including)
Maximo_asset_management	Ibm	7.1.1.10 (including)	7.1.1.10 (including)
Maximo_asset_management	Ibm	7.1.1.11 (including)	7.1.1.11 (including)
Maximo_asset_management	Ibm	7.1.1.12 (including)	7.1.1.12 (including)
Maximo_asset_management	Ibm	7.1.2 (including)	7.1.2 (including)

NVD	https://nvd.nist.gov/vuln/detail/CVE-2014-0849
CWE	https://cwe.mitre.org/data/definitions/264.html

Affected Software

References