{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-18T13:18:13.807","vulnerabilities":[{"cve":{"id":"CVE-2012-2183","sourceIdentifier":"psirt@us.ibm.com","published":"2012-09-10T17:55:01.367","lastModified":"2025-04-11T00:51:21.963","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Session fixation vulnerability in IBM Maximo Asset Management 6.2 through 7.5, as used in SmartCloud Control Desk, Tivoli Asset Management for IT, Tivoli Service Request Manager, Maximo Service Desk, and Change and Configuration Management Database (CCMDB), allows remote attackers to hijack web sessions via unspecified vectors."},{"lang":"es","value":"Vulnerabilidad de fijación de sesión en IBM Maximo Asset Management 6.2 a 7.5, tal como se utiliza en la Mesa de Control SmartCloud, Gestión de Activos de TI de Tivoli, Tivoli Service Request, Información Maximo Service, y el cambio y la base de datos de administración de configuración (CCMDB), permite a atacantes remotos secuestrar sesiones web a través de vectores no especificados."}],"metrics":{"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:M/Au:N/C:P/I:P/A:P","baseScore":6.8,"accessVector":"NETWORK","accessComplexity":"MEDIUM","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL"},"baseSeverity":"MEDIUM","exploitabilityScore":8.6,"impactScore":6.4,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":true}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-Other"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:change_and_configuration_management_database:6.0:*:*:*:*:*:*:*","matchCriteriaId":"B341ABF7-7CD3-4A62-97F9-2E62E2042C53"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:change_and_configuration_management_database:7.0:*:*:*:*:*:*:*","matchCriteriaId":"995A83BA-2438-44D7-9885-69160321BF52"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:maximo_asset_management:6.2.0.0:*:*:*:*:*:*:*","matchCriteriaId":"789E00F7-D6CD-4F8C-B785-CB17DB11AEDA"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:maximo_asset_management:7.1.0.0:*:*:*:*:*:*:*","matchCriteriaId":"0265899D-68B5-4C15-997E-28F485D8B9D0"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:maximo_asset_management:7.5.0.0:*:*:*:*:*:*:*","matchCriteriaId":"4B590C42-21A1-4C62-8293-5A0D7AD628E4"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:maximo_service_desk:6.2:*:*:*:*:*:*:*","matchCriteriaId":"B1D9DD16-F7C9-42E3-9E1D-36B4764C8503"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:smartcloud_control_desk:7.0:*:*:*:*:*:*:*","matchCriteriaId":"27827C71-E00C-4DE1-8A81-EE5863C28E0E"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:tivoli_asset_management_for_it:6.0:*:*:*:*:*:*:*","matchCriteriaId":"62B69712-B405-43F4-B6E9-BC1C232A36E7"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:tivoli_asset_management_for_it:6.2:*:*:*:*:*:*:*","matchCriteriaId":"46711969-54C1-414A-B9F7-CCDCC4FFDA6A"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:tivoli_asset_management_for_it:7.0:*:*:*:*:*:*:*","matchCriteriaId":"1E834D7A-9614-45BC-8361-27D80F14068D"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:tivoli_asset_management_for_it:7.1:*:*:*:*:*:*:*","matchCriteriaId":"013D299A-6A9C-44C7-B49C-A4115F4C13E3"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:tivoli_asset_management_for_it:7.2:*:*:*:*:*:*:*","matchCriteriaId":"3D5C1BCF-1DC0-45E7-B624-9221F8610346"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:tivoli_service_request_manager:7.0:*:*:*:*:*:*:*","matchCriteriaId":"9A8D103F-9065-46A6-B914-7C6754422858"}]}]}],"references":[{"url":"http://osvdb.org/85185","source":"psirt@us.ibm.com"},{"url":"http://secunia.com/advisories/50551","source":"psirt@us.ibm.com","tags":["Vendor Advisory"]},{"url":"http://www-01.ibm.com/support/docview.wss?uid=swg1IV09212","source":"psirt@us.ibm.com"},{"url":"http://www-01.ibm.com/support/docview.wss?uid=swg21610081","source":"psirt@us.ibm.com"},{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/75776","source":"psirt@us.ibm.com"},{"url":"http://osvdb.org/85185","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://secunia.com/advisories/50551","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]},{"url":"http://www-01.ibm.com/support/docview.wss?uid=swg1IV09212","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www-01.ibm.com/support/docview.wss?uid=swg21610081","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/75776","source":"af854a3a-2127-422b-91ae-364da2661108"}],"evaluatorComment":"Per: http://cwe.mitre.org/data/definitions/384.html\r\n\r\n'CWE-384: Session Fixation'"}}]}