4 matches found
VulnCheck KEV: CVE-2020-4463
IBM Maximo Asset Management 7.6.0.1 and 7.6.0.2 is vulnerable to an XML External Entity Injection XXE attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources. IBM X-Force ID: 181484...
Xxe
IBM Maximo Asset Management 7.6.0.1 and 7.6.0.2 is vulnerable to an XML External Entity Injection XXE attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources. IBM X-Force ID: 181484...
CVE-2020-4463
CVE-2020-4463 affects IBM Maximo Asset Management 7.6.0.1 and 7.6.0.2, enabling an XML External Entity (XXE) injection when processing XML data. A remote attacker could disclose sensitive information or cause memory resource consumption. IBM’s bulletin lists fixes for 7.6.x, with 7.6.1.2 (and lat...
PT-2020-18079 · Ibm · Ibm Maximo Asset Management
Name of the Vulnerable Software and Affected Versions: IBM Maximo Asset Management versions 7.6.0.1 through 7.6.0.2 Description: The issue allows a remote attacker to expose sensitive information or consume memory resources through an XML External Entity Injection XXE attack when processing XML...