NVD

Id
26278  
Name
CVE-2015-4966  
Description
IBM Maximo Asset Management 7.1 through 7.1.1.13, 7.5.0 before 7.5.0.9 FP009, and 7.6.0 before 7.6.0.2 IFIX001; Maximo Asset Management 7.5.0 before 7.5.0.9 FP009, 7.5.1, and 7.6.0 before 7.6.0.2 IFIX001 for SmartCloud Control Desk; and Maximo Asset Management 7.1 through 7.1.1.13 and 7.2 for Tivoli IT Asset Management for IT and certain other products have a default administrator account, which makes it easier for remote authenticated users to obtain access via unspecified vectors.  
Reject
 
CVSS Version
2  
CVSS Score
6.5  
Severity
Medium  
CVSS Base Score
6.5  
CVSS Impact Subscore
6.4  
CVSS Exploit Subscore
8  
CVSS Vector
(AV:N/AC:L/Au:S/C:P/I:P/A:P)  
Pub Date
2017-01-19  
Published
2015-11-08  
Modified Date
2015-11-09  
Seq
2015-4966  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
139107 26278 CVE-2015-4966 http://www-01.ibm.com/support/docview.wss?uid=swg21968191  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
10473 JVNDB-2015-005793 複数の IBM 製品におけるアクセス権を取得される脆弱性 IBM Maximo Asset Management、Tivoli Asset Management for IT および特定のその他の製品は、デフォルトの管理者アカウントを持つため、アクセス権を取得される脆弱性が存在します。 CVE-2015-4966 82191 CVE-2015-4966 26278 6.5 http://jvndb.jvn.jp/ja/contents/2015/JVNDB-2015-005793.html 2015-10-30 2015-11-10 View