IBM Maximo Asset Management 7.6.0 and 7.6.1 could allow a remote authenticated attacker to execute arbitrary code on the system, caused by an unsafe deserialization in Java. By sending specially-crafted request, an attacker could exploit this vulnerability to execute arbitrary code on the system. IBM X-Force ID: 182396.
CPE | Name | Operator | Version |
---|---|---|---|
maximo_asset_management | ge | 7.6.0 | |
maximo_asset_management | lt | 7.6.0.10 | |
maximo_asset_management | ge | 7.6.1 | |
maximo_asset_management | lt | 7.6.1.2 |