Latest ibm maximo asset management Vulnerabilities

IBM-7141270
IBM Maximo Asset Management<=7.6.1.3
CVE-2024-27266
IBM Maximo Application Suite XML external entity injection
IBM Maximo Asset Management<=7.6.1.3
IBM Maximo Application Suite=7.6.1.3
CVE-2023-38723
Maximo Asset Management cross-site scripting
IBM Maximo Asset Management<=7.6.1.3
IBM-7139010
IBM Maximo Asset Management<=7.6.1.3
IBM-7138684
IBM Maximo Asset Management<=7.6.1.3
IBM-7112388
IBM Maximo Asset Management<=7.6.1.3
CVE-2023-32333
IBM Maximo Asset Management improper access control
IBM Maximo Asset Management<=7.6.1.3
IBM Maximo Asset Management=7.6.1.3
CVE-2023-47718
IBM Maximo Asset Management cross-site request forgery
IBM Maximo Application Suite - Manage Component<=MAS 8.10.0 - Manage 8.6.0
IBM Maximo Application Suite - Manage Component<=MAS 8.11.0 - Manage 8.7.0
IBM Maximo Application Suite>=8.10<8.10.6
IBM Maximo Application Suite>=8.11<=8.11.2
IBM Maximo Asset Management=7.6.1.3
CVE-2023-32337
IBM Maximo Spatial Asset Management server-side request forgery
IBM Maximo Spatial in IBM Maximo Application Suite - Manage Component<=MAS 8.10.0 - Manage 8.6.0 - Spatial 8.6.0
IBM Maximo Application Suite>=8.10<8.10.6
IBM Maximo Application Suite>=8.11<=8.11.2
IBM Maximo Asset Management=7.6.1.3
IBM-7107738
IBM Maximo Asset Management<=7.6.1.3
IBM-7030926
IBM Maximo Asset Management<=7.6.1.2
IBM Maximo Asset Management<=7.6.1.3
CVE-2023-32332
IBM Maximo Application Suite 8.9, 8.10 and IBM Maximo Asset Management 7.6.1.2, 7.6.1.3 are vulnerable to HTML injection. A remote attacker could inject malicious HTML code, which when viewed, would b...
IBM Maximo Application Suite=8.9
IBM Maximo Application Suite=8.10
IBM Maximo Asset Management=7.6.1.2
IBM Maximo Asset Management=7.6.1.3
IBM Maximo Asset Management<=7.6.1.2
IBM Maximo Asset Management<=7.6.1.3
IBM-6999747
IBM Maximo Asset Management<=7.6.1.2
IBM Maximo Asset Management<=7.6.1.3
CVE-2023-32334
IBM Maximo Asset Management 7.6.1.2, 7.6.1.3 and IBM Maximo Application Suite 8.8.0 stores sensitive information in URL parameters. This may lead to information disclosure if unauthorized parties have...
IBM Maximo Application Suite=8.8.0
IBM Maximo Asset Management=7.6.1.2
IBM Maximo Asset Management=7.6.1.3
IBM Maximo Application Suite - Manage Component<=MAS 8.8.0 - Manage 8.4.0
IBM-6985679
IBM Maximo Asset Management<=7.6.1.2
IBM Maximo Asset Management<=7.6.1.3
IBM-6983460
IBM Maximo Asset Management<=7.6.1.2
IBM Maximo Asset Management<=7.6.1.3
CVE-2022-43866
IBM Maximo Asset Management 7.6.1.2 and 7.6.1.3 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended funct...
IBM Maximo Asset Management<=7.6.1.2
IBM Maximo Asset Management<=7.6.1.3
IBM Maximo Asset Management=7.6.1.2
IBM Maximo Asset Management=7.6.1.3
IBM Maximo Asset Management<=7.6.1.2
IBM Maximo Asset Management<=7.6.1.3
CVE-2022-35645
IBM Maximo Asset Management 7.6.1.1, 7.6.1.2, 7.6.1.3 and IBM Maximo Application Suite 8.8 and 8.9 is vulnerable to stored cross-site scripting. This vulnerability allows users to embed arbitrary Java...
IBM Maximo Application Suite=8.8.0
IBM Maximo Application Suite=8.9.0
IBM Maximo Asset Management=7.6.1.1
IBM Maximo Asset Management=7.6.1.2
IBM Maximo Asset Management=7.6.1.3
IBM Maximo Manage Application in IBM Maximo Application Suite<=MAS 8.8-Manage 8.4
and 1 more
IBM-6959353
IBM Maximo Asset Management<=7.6.1.2
IBM Maximo Asset Management<=7.6.1.3
CVE-2022-41734
IBM Maximo Asset Management 7.6.1.2 and 7.6.1.3 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could...
IBM Maximo Application Suite=8.4
IBM Maximo Application Suite=8.5
IBM Maximo Asset Management=7.6.1.2
IBM Maximo Asset Management=7.6.1.3
IBM Maximo Asset Management<=7.6.1.3
IBM Maximo Asset Management<=7.6.1.2
and 2 more
IBM-6857605
IBM Maximo Asset Management<=7.6.1.3
IBM Maximo Asset Management<=7.6.1.2
IBM Maximo Application Suite - Manage Component<=8.5
IBM Maximo Application Suite - Manage Component<=8.4
IBM-6852669
IBM Maximo Asset Management<=7.6.1.1
IBM Maximo Asset Management<=7.6.1.2
IBM Maximo Asset Management<=7.6.1.3
IBM Maximo Application Suite - Manage Component<=8.3
IBM Maximo Application Suite - Manage Component<=8.4
CVE-2022-35281
IBM Maximo Application Suite=8.3
IBM Maximo Application Suite=8.4
IBM Maximo Asset Management=7.6.1.1
IBM Maximo Asset Management=7.6.1.2
IBM Maximo Asset Management=7.6.1.3
IBM Maximo Asset Management<=7.6.1.1
and 4 more
IBM-6621599
IBM Maximo Asset Management<=7.6.1.1, 7.6.1.2, 7.6.1.3
CVE-2022-40616
IBM Maximo Asset Management could allow a user to bypass authentication and obtain sensitive information or perform tasks they should not have access to.
IBM Maximo Asset Management<=7.6.1.1, 7.6.1.2, 7.6.1.3
IBM Maximo Asset Management=7.6.1.1
IBM Maximo Asset Management=7.6.1.2
IBM Maximo Asset Management=7.6.1.3
IBM-6620059
IBM Maximo Asset Management<=7.6.1.3
IBM Maximo Asset Management<=7.6.1.2
IBM Maximo Asset Management<=7.6.1.1
IBM Maximo Manage Application in IBM Maximo Application Suite<=MAS 8.7-Manage 8.3
IBM Maximo Manage Application in IBM Maximo Application Suite<=MAS 8.8-Manage 8.4
CVE-2021-38924
IBM Maximo Asset Management 7.6.1.1 and 7.6.1.2 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could...
IBM Maximo Application Suite=8.7
IBM Maximo Application Suite=8.8
IBM Maximo Asset Management=7.6.1.1
IBM Maximo Asset Management=7.6.1.2
IBM Maximo Asset Management<=7.6.1.3
IBM Maximo Asset Management<=7.6.1.2
and 3 more
IBM-6615273
IBM Maximo Asset Management<=7.6.1.2
IBM Maximo Asset Management<=7.6.1.1
IBM Manage Component<=8.3
IBM-6579187
IBM Maximo Asset Management<=7.6.1.1
IBM Maximo Asset Management<=7.6.1.2
IBM Maximo Manage Application in IBM Maximo Application Suite<=MAS 8.7-Manage 8.3
CVE-2021-29854
IBM Maximo Asset Management 7.6.1.1 and 7.6.1.2 is vulnerable to HTTP header injection, caused by improper validation of input by the HOST headers. By sending a specially crafted HTTP request, a remot...
IBM Maximo Application Suite=8.7
IBM Maximo Asset Management=7.6.1.1
IBM Maximo Asset Management=7.6.1.2
IBM Maximo Asset Management<=7.6.1.1
IBM Maximo Asset Management<=7.6.1.2
IBM Maximo Manage Application in IBM Maximo Application Suite<=MAS 8.7-Manage 8.3
CVE-2022-22436
IBM Maximo Asset Management 7.6.1.2 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality pot...
IBM Maximo Asset Management=7.6.1.2
IBM Manage Component<=All
IBM Maximo Asset Management<=7.6.1.2
IBM Maximo Asset Management<=7.6.1.1
CVE-2022-22435
IBM Maximo Asset Management=7.6.1.2
IBM Manage Component<=All
IBM Maximo Asset Management<=7.6.1.2
IBM Maximo Asset Management<=7.6.1.1
IBM-6573669
IBM Manage Component<=All
IBM Maximo Asset Management<=7.6.1.2
IBM Maximo Asset Management<=7.6.1.1
IBM-6573667
IBM Manage Component<=All
IBM Maximo Asset Management<=7.6.1.2
IBM Maximo Asset Management<=7.6.1.1
IBM-6557318
IBM Maximo Asset Management<=7.6.1.2
IBM Maximo Asset Management<=7.6.1.1
CVE-2021-38935
IBM Maximo Asset Management does not require that users should have strong passwords by default, which makes it easier for attackers to compromise user accounts.
IBM Maximo Asset Management<=7.6.1.2
IBM Maximo Asset Management<=7.6.1.1
IBM Maximo Asset Management=7.6.1.2
CVE-2021-29744
IBM Maximo Asset Management is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially...
IBM Maximo Asset Management<=7.6.0.x
IBM Maximo Asset Management<=7.6.1.x
IBM Maximo Application Suite<=MAS 8.4-Manage 8.0
IBM Maximo Application Suite=8.4
IBM Maximo Asset Management=7.6.0.0
IBM Maximo Asset Management=7.6.0.1
CVE-2021-20509
IBM Maximo Asset Management 7.6.0 and 7.6.1 is potentially vulnerable to CSV Injection. A remote attacker could execute arbitrary commands on the system, caused by improper validation of csv file cont...
IBM Maximo Asset Management>7.6.0.0<7.6.1.2
IBM-6484679
IBM Maximo Asset Management<=7.6.0.x
IBM Maximo Asset Management<=7.6.1.x
IBM Maximo Application Suite<=MAS8.4 - Manage 8.0
CVE-2021-29743
IBM Maximo Application Suite>=8.0<=8.4
IBM Maximo Asset Management>=7.6.0.0<=7.6.0.10
IBM Maximo Asset Management>=7.6.1.0<=7.6.1.2
IBM Maximo Asset Management<=7.6.0.x
IBM Maximo Asset Management<=7.6.1.x
IBM Maximo Application Suite<=MAS8.4 - Manage 8.0
CVE-2021-20374
IBM Maximo Asset Management is vulnerable to stored cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality pote...
IBM Maximo Asset Management<=7.6.1
IBM Maximo Asset Management=7.6.0
IBM Maximo Asset Management=7.6.1
IBM-6454205
IBM Maximo Asset Management<=7.6.1
CVE-2020-4409
IBM Maximo Asset Management could allow a remote attacker to conduct phishing attacks, using a tabnabbing attack. By persuading a victim to visit a specially-crafted Web site, a remote attacker could ...
IBM Maximo Asset Management<=7.6.0
IBM Maximo Asset Management<=7.6.1
IBM Control Desk=7.6.1
IBM Control Desk=7.6.1.1
IBM Maximo Asset Management=7.6.6
IBM Maximo Asset Management=7.6.7
and 38 more
CVE-2020-4526
IBM Maximo Asset Management is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts.
IBM Maximo Asset Management<=7.6.0
IBM Maximo Asset Management<=7.6.1
IBM Maximo Asset Management>=7.6.0<7.6.0.10
IBM Maximo Asset Management>=7.6.1<7.6.1.2
IBM-6332587
IBM Maximo Asset Management<=7.6.0
IBM Maximo Asset Management<=7.6.1
IBM-6332589
IBM Maximo Asset Management<=7.6.0
IBM Maximo Asset Management<=7.6.1
CVE-2020-4521
IBM Maximo Asset Management could allow a remote authenticated attacker to execute arbitrary code on the system, caused by an unsafe deserialization in Java. By sending specially-crafted request, an a...
IBM Maximo Asset Management<=7.6.0
IBM Maximo Asset Management<=7.6.1
IBM Maximo Asset Management>=7.6.0<7.6.0.10
IBM Maximo Asset Management>=7.6.1<7.6.1.2
CVE-2020-4493
IBM Maximo Asset Management could allow an attacker to bypass authentication and issue commands using a specially crafted HTTP command.
IBM Maximo Asset Management<=7.6.0
IBM Maximo Asset Management<=7.6.1
IBM Maximo Asset Management>=7.6.0.0<7.6.0.10
IBM Maximo Asset Management>=7.6.1.0<7.6.1.2
IBM-6332583
IBM Maximo Asset Management<=7.6.0
IBM Maximo Asset Management<=7.6.1
CVE-2019-4671
IBM Maximo Asset Management is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements, which could allow the attacker to view, add, modify or delete information in ...
IBM Maximo Asset Management<=7.6.0
IBM Maximo Asset Management<=7.6.1
IBM Maximo Asset Management>=7.6.0<7.6.0.10
IBM Maximo Asset Management>=7.6.1<7.6.1.2

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203