3 matches found
Security Bulletin: IBM Maximo Asset Management is vulnerable to Path Disclosure (CVE-2019-4745)
Summary IBM Maximo Asset Management could allow a remote attacker to disclose sensitive information to an authenticated user due to disclosing path information in the URL. Vulnerability Details CVEID: CVE-2019-4745 DESCRIPTION: IBM Maximo Asset Management could allow a remote attacker to disclose...
CVE-2019-4745
IBM Maximo Asset Management 7.6.1.0 could allow a remote attacker to disclose sensitive information to an authenticated user due to disclosing path information in the URL. IBM X-Force ID: 172883...
CVE-2019-4745
CVE-2019-4745 affects IBM Maximo Asset Management core 7.6.1.0. Root cause: path information disclosure in the URL leading to potential sensitive data exposure to an authenticated user. CVSS base score 4.3 (MEDIUM). Remediation: apply fixes for 7.6.1.0 (e.g., 7.6.1.0 iFix015 or latest Interim Fix...