IBM Maximo Asset Management 7.1 through 7.1.1.13, 7.5.0 before 7.5.0.8 IFIX001, and 7.6.0 before 7.6.0.0 IFIX005 does not prevent caching of HTTPS responses, which allows physically proximate attackers to obtain sensitive local-cache information by leveraging an unattended workstation.
2015-07-01T10:59:01.100
2025-04-12T10:46:40.837
Deferred
CVSSv2: 2.1 (LOW)
AV:L/AC:L/Au:N/C:P/I:N/A:N
3.9
2.9
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Application | ibm | maximo_asset_management | 7.1 | Yes |
| Application | ibm | maximo_asset_management | 7.1.1 | Yes |
| Application | ibm | maximo_asset_management | 7.1.1.1 | Yes |
| Application | ibm | maximo_asset_management | 7.1.1.2 | Yes |
| Application | ibm | maximo_asset_management | 7.1.1.5 | Yes |
| Application | ibm | maximo_asset_management | 7.1.1.6 | Yes |
| Application | ibm | maximo_asset_management | 7.1.1.7 | Yes |
| Application | ibm | maximo_asset_management | 7.1.1.8 | Yes |
| Application | ibm | maximo_asset_management | 7.1.1.9 | Yes |
| Application | ibm | maximo_asset_management | 7.1.1.10 | Yes |
| Application | ibm | maximo_asset_management | 7.1.1.11 | Yes |
| Application | ibm | maximo_asset_management | 7.1.1.12 | Yes |
| Application | ibm | maximo_asset_management | 7.1.1.13 | Yes |
| Application | ibm | maximo_asset_management | 7.5.0.0 | Yes |
| Application | ibm | maximo_asset_management | 7.5.0.1 | Yes |
| Application | ibm | maximo_asset_management | 7.5.0.2 | Yes |
| Application | ibm | maximo_asset_management | 7.5.0.3 | Yes |
| Application | ibm | maximo_asset_management | 7.5.0.4 | Yes |
| Application | ibm | maximo_asset_management | 7.5.0.5 | Yes |
| Application | ibm | maximo_asset_management | 7.5.0.6 | Yes |
| Application | ibm | maximo_asset_management | 7.5.0.7 | Yes |
| Application | ibm | maximo_asset_management | 7.5.0.8 | Yes |
| Application | ibm | maximo_asset_management | 7.6.0.0 | Yes |