Code injection

2017-08-0918:29:00

PRIOn knowledge base

www.prio-n.com

4.4 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

26.8%

JSON

IBM Maximo Asset Management 7.5 and 7.6 could allow an authenticated user to manipulate work orders to forge emails which could be used to conduct further advanced attacks. IBM X-Force ID: 126684.

CPENameOperatorVersion
maximo_asset_managementeq7.5.0.8
maximo_asset_managementeq7.6.0.3
maximo_asset_managementeq7.5.0.5
maximo_asset_managementeq7.6.0.5
maximo_asset_managementeq7.5.0.4
maximo_asset_managementeq7.5.0.1
maximo_asset_managementeq7.6.0.6
maximo_asset_managementeq7.6.0.1
maximo_asset_managementeq7.5.0.9
maximo_asset_managementeq7.5.0.7

Name	Operator	Version
maximo_asset_management	eq	7.5.0.8
maximo_asset_management	eq	7.6.0.3
maximo_asset_management	eq	7.5.0.5
maximo_asset_management	eq	7.6.0.5
maximo_asset_management	eq	7.5.0.4
maximo_asset_management	eq	7.5.0.1
maximo_asset_management	eq	7.6.0.6
maximo_asset_management	eq	7.6.0.1
maximo_asset_management	eq	7.5.0.9
maximo_asset_management	eq	7.5.0.7