CVE-2012-0714 Information

Description

Cross-site request forgery (CSRF) vulnerability in IBM Maximo Asset Management 6.2 through 7.5 as used in SmartCloud Control Desk Tivoli Asset Management for IT Tivoli Service Request Manager Maximo Service Desk and Change and Configuration Management Database (CCMDB) allows remote attackers to hijack the authentication of unspecified victims via unknown vectors.

Reference

http://osvdb.org/85179 http://secunia.com/advisories/50551 http://www-01.ibm.com/support/docview.wss?uid=swg1IV16085 http://www-01.ibm.com/support/docview.wss?uid=swg1IV16497 http://www-01.ibm.com/support/docview.wss?uid=swg21610081 https://exchange.xforce.ibmcloud.com/vulnerabilities/73534