{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-18T21:44:46.888","vulnerabilities":[{"cve":{"id":"CVE-2011-4818","sourceIdentifier":"psirt@us.ibm.com","published":"2012-03-13T03:12:26.120","lastModified":"2025-04-11T00:51:21.963","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Open redirect vulnerability in IBM Maximo Asset Management and Asset Management Essentials 6.2, 7.1, and 7.5 allows remote authenticated users to redirect users to arbitrary web sites and conduct phishing attacks via the uisessionid parameter to an unspecified component."},{"lang":"es","value":"Vulnerabilidad de redirección involuntaria en IBM Maximo Asset Management y Asset Management Essentials 6.2, 7.1, y 7.5 permite a usuarios autenticados remotos redirigir a usuarios a webs arbitrarias y realizar ataques de phishing a través del parámetro uisessionid de un componente sin especificar."}],"metrics":{"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:M/Au:N/C:N/I:P/A:N","baseScore":4.3,"accessVector":"NETWORK","accessComplexity":"MEDIUM","authentication":"NONE","confidentialityImpact":"NONE","integrityImpact":"PARTIAL","availabilityImpact":"NONE"},"baseSeverity":"MEDIUM","exploitabilityScore":8.6,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":true}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-20"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:maximo_asset_management:6.2:*:*:*:*:*:*:*","matchCriteriaId":"F540E9A3-A1D7-4993-9149-295970944355"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:maximo_asset_management:7.1:*:*:*:*:*:*:*","matchCriteriaId":"DE721CF9-0F75-410B-A0F4-542041E25925"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:maximo_asset_management:7.5:*:*:*:*:*:*:*","matchCriteriaId":"1AEBAE48-FFD0-4837-AB3B-F6C31B1AC8D9"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:maximo_asset_management_essentials:6.2:*:*:*:*:*:*:*","matchCriteriaId":"233B2CD5-98F7-4024-BC1E-38BC4D8BA6F6"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:maximo_asset_management_essentials:7.1:*:*:*:*:*:*:*","matchCriteriaId":"85457F6C-80FE-4E9F-BAB6-58B0485D8B7B"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:maximo_asset_management_essentials:7.5:*:*:*:*:*:*:*","matchCriteriaId":"598EAB6C-7D41-46FE-BB32-D31014CA01D6"}]}]}],"references":[{"url":"http://secunia.com/advisories/48299","source":"psirt@us.ibm.com"},{"url":"http://www-01.ibm.com/support/docview.wss?uid=swg1IV09200","source":"psirt@us.ibm.com"},{"url":"http://www.ibm.com/support/docview.wss?uid=swg21584666","source":"psirt@us.ibm.com","tags":["Vendor Advisory"]},{"url":"http://www.securityfocus.com/bid/52333","source":"psirt@us.ibm.com"},{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/72006","source":"psirt@us.ibm.com"},{"url":"http://secunia.com/advisories/48299","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www-01.ibm.com/support/docview.wss?uid=swg1IV09200","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.ibm.com/support/docview.wss?uid=swg21584666","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]},{"url":"http://www.securityfocus.com/bid/52333","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/72006","source":"af854a3a-2127-422b-91ae-364da2661108"}]}}]}