CVE List

CVE-2020-4521

Critical 8.8

IBM Maximo Asset Management 7.6.0 and 7.6.1 could allow a remote authenticated attacker to execute arbitrary code on the system, caused by an unsafe deserialization in Java. By sending specially-crafted request, an attacker could exploit this vulnerability to execute arbitrary code on the system. IBM X-Force ID: 182396.

Published September 15, 2020.

Affected software

IBM Maximo Asset Management

Reference links

Sign Up for Alerts