Latest ibm maximo application suite Vulnerabilities

● CVE-2024-27266

IBM Maximo Application Suite XML external entity injection

IBM Maximo Asset Management<=7.6.1.3

IBM Maximo Application Suite=7.6.1.3

● CVE-2023-32337

IBM Maximo Spatial Asset Management server-side request forgery

IBM Maximo Spatial in IBM Maximo Application Suite - Manage Component<=MAS 8.10.0 - Manage 8.6.0 - Spatial 8.6.0

IBM Maximo Application Suite>=8.10<8.10.6

IBM Maximo Application Suite>=8.11<=8.11.2

IBM Maximo Asset Management=7.6.1.3

● CVE-2023-47718

IBM Maximo Asset Management cross-site request forgery

IBM Maximo Application Suite - Manage Component<=MAS 8.10.0 - Manage 8.6.0

IBM Maximo Application Suite - Manage Component<=MAS 8.11.0 - Manage 8.7.0

IBM Maximo Application Suite>=8.10<8.10.6

IBM Maximo Application Suite>=8.11<=8.11.2

IBM Maximo Asset Management=7.6.1.3

● CVE-2023-32332

IBM Maximo Application Suite 8.9, 8.10 and IBM Maximo Asset Management 7.6.1.2, 7.6.1.3 are vulnerable to HTML injection. A remote attacker could inject malicious HTML code, which when viewed, would b...

IBM Maximo Application Suite=8.9

IBM Maximo Application Suite=8.10

IBM Maximo Asset Management=7.6.1.2

IBM Maximo Asset Management=7.6.1.3

IBM Maximo Asset Management<=7.6.1.2

IBM Maximo Asset Management<=7.6.1.3

● CVE-2023-27861

IBM Maximo Application Suite=8.8.0

IBM Maximo Application Suite=8.9.0

IBM Maximo Application Suite - Manage Component<=MAS 8.8.0 - Manage 8.4.0

IBM Maximo Application Suite - Manage Component<=MAS 8.9.0 - Manage 8.5.0

● CVE-2023-32334

IBM Maximo Asset Management 7.6.1.2, 7.6.1.3 and IBM Maximo Application Suite 8.8.0 stores sensitive information in URL parameters. This may lead to information disclosure if unauthorized parties have...

IBM Maximo Application Suite=8.8.0

IBM Maximo Asset Management=7.6.1.2

IBM Maximo Asset Management=7.6.1.3

IBM Maximo Application Suite - Manage Component<=MAS 8.8.0 - Manage 8.4.0

● CVE-2022-46774

IBM Manage Application in the IBM Maximo Applicaiton Suite is vulnerable to incorrect default permissions which could give access to a user to actions that they should not have access to.

IBM Maximo Manage Application in IBM Maximo Application Suite<=MAS 8.8-Manage 8.4

IBM Maximo Manage Application in IBM Maximo Application Suite<=MAS 8.8-Manage 8.5

IBM Manage Application=8.4.0

IBM Manage Application=8.5.0

IBM Maximo Application Suite=8.8.0

● CVE-2022-35645

IBM Maximo Asset Management 7.6.1.1, 7.6.1.2, 7.6.1.3 and IBM Maximo Application Suite 8.8 and 8.9 is vulnerable to stored cross-site scripting. This vulnerability allows users to embed arbitrary Java...

IBM Maximo Application Suite=8.8.0

IBM Maximo Application Suite=8.9.0

IBM Maximo Asset Management=7.6.1.1

IBM Maximo Asset Management=7.6.1.2

IBM Maximo Asset Management=7.6.1.3

IBM Maximo Manage Application in IBM Maximo Application Suite<=MAS 8.8-Manage 8.4

and 1 more

● CVE-2022-43923

IBM Maximo Application Suite=8.8.0

IBM Maximo Application Suite=8.9.0

IBM Maximo Manage Application in IBM Maximo Application Suite<=MAS 8.9-Manage 8.5

IBM Maximo Manage Application in IBM Maximo Application Suite<=MAS 8.8-Manage 8.4

● CVE-2022-41734

IBM Maximo Asset Management 7.6.1.2 and 7.6.1.3 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could...

IBM Maximo Application Suite=8.4

IBM Maximo Application Suite=8.5

IBM Maximo Asset Management=7.6.1.2

IBM Maximo Asset Management=7.6.1.3

IBM Maximo Asset Management<=7.6.1.3

IBM Maximo Asset Management<=7.6.1.2

and 2 more

● CVE-2022-35281

IBM Maximo Application Suite=8.3

IBM Maximo Application Suite=8.4

IBM Maximo Asset Management=7.6.1.1

IBM Maximo Asset Management=7.6.1.2

IBM Maximo Asset Management=7.6.1.3

IBM Maximo Asset Management<=7.6.1.1

and 4 more

● CVE-2021-38924

IBM Maximo Asset Management 7.6.1.1 and 7.6.1.2 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could...

IBM Maximo Application Suite=8.7

IBM Maximo Application Suite=8.8

IBM Maximo Asset Management=7.6.1.1

IBM Maximo Asset Management=7.6.1.2

IBM Maximo Asset Management<=7.6.1.3

IBM Maximo Asset Management<=7.6.1.2

and 3 more

● CVE-2021-29854

IBM Maximo Asset Management 7.6.1.1 and 7.6.1.2 is vulnerable to HTTP header injection, caused by improper validation of input by the HOST headers. By sending a specially crafted HTTP request, a remot...

IBM Maximo Application Suite=8.7

IBM Maximo Asset Management=7.6.1.1

IBM Maximo Asset Management=7.6.1.2

IBM Maximo Asset Management<=7.6.1.1

IBM Maximo Asset Management<=7.6.1.2

IBM Maximo Manage Application in IBM Maximo Application Suite<=MAS 8.7-Manage 8.3

● CVE-2021-29744

IBM Maximo Asset Management is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially...

IBM Maximo Asset Management<=7.6.0.x

IBM Maximo Asset Management<=7.6.1.x

IBM Maximo Application Suite<=MAS 8.4-Manage 8.0

IBM Maximo Application Suite=8.4

IBM Maximo Asset Management=7.6.0.0

IBM Maximo Asset Management=7.6.0.1

● CVE-2021-29743

IBM Maximo Application Suite>=8.0<=8.4

IBM Maximo Asset Management>=7.6.0.0<=7.6.0.10

IBM Maximo Asset Management>=7.6.1.0<=7.6.1.2

IBM Maximo Asset Management<=7.6.0.x

IBM Maximo Asset Management<=7.6.1.x

IBM Maximo Application Suite<=MAS8.4 - Manage 8.0

● IBM-6484679

IBM Maximo Asset Management<=7.6.0.x

IBM Maximo Asset Management<=7.6.1.x

IBM Maximo Application Suite<=MAS8.4 - Manage 8.0

Latest ibm maximo application suite Vulnerabilities

Company

Resources

Contact