IBM Maximo Asset Management 7.1 before 7.1.1.12 and 7.5 before 7.5.0.5 allows remote authenticated users to obtain sensitive information via unspecified vectors.
https://exchange.xforce.ibmcloud.com/vulnerabilities/84849
http://www-01.ibm.com/support/docview.wss?uid=swg21651085