Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ibmIBMD2EB844F372111C2B30A9C5F751BFBE93A36F13B80C4588E22EED45FB306FE6A
HistoryApr 28, 2020 - 10:59 p.m.

Security Bulletin: Android Backup is Allowed (CVE-2019-4288)

2020-04-2822:59:34
www.ibm.com
9

0.0004 Low

EPSS

Percentile

12.6%

JSON

Summary

IBM Maximo Anywhere allows Android Backup which could result in an attacker being able to copy application information from device.

Vulnerability Details

CVEID:CVE-2019-4288
**DESCRIPTION:**IBM Maximo Anywhere could disclose highly senstiive user information to an authenticated user with physical access to the device.
CVSS Base score: 4.3
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/160631 for the current score.
CVSS Vector: (CVSS:3.0/AV:P/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N)

Affected Products and Versions

Affected Product(s) Version(s)
IBM Maximo Anywhere 7.6.2
IBM Maximo Anywhere 7.6.3

Remediation/Fixes

Affected Product

|

VRMF

|

Remediation / First Fix

—|—|—
IBM Maximo Anywhere| 7.6.2.x| Request LA Fix from Support.
IBM Maximo Anywhere| 7.6.3.x| Request LA Fix from Support.

Due to the threat posed by a successful attack, IBM strongly recommends that customers apply fixes as soon as possible.

Workarounds and Mitigations

None

Related

cve 1
nvd 1
cvelist 1
prion 1
cve
cve
CVE-2019-4288
2020-04-29 14:15:16
nvd
nvd
CVE-2019-4288
2020-04-29 14:15:16
cvelist
cvelist
CVE-2019-4288
2020-04-28 00:00:00
prion
prion
Code injection
2020-04-29 14:15:00

0.0004 Low

EPSS

Percentile

12.6%

JSON
Related for D2EB844F372111C2B30A9C5F751BFBE93A36F13B80C4588E22EED45FB306FE6A
cve1nvd1cvelist1prion1