CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

2897 matches found

IBM Security Bulletins•added 2025/04/14 9:36 a.m.•13 views

Security Bulletin: IBM Maximo Application Suite uses requests-2.31.0-py3-none-any.whl which is vulnerable to CVE-2024-35195.

Summary IBM Maximo Application Suite uses requests-2.31.0-py3-none-any.whl which is vulnerable to CVE-2024-35195. This bulletin contains information regarding the vulnerability and its fixture. Vulnerability Details CVEID:CVE-2024-35195 DESCRIPTION: Psf Requests could allow a local authenticated...

5.6CVSS6.2AI score0.0034EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2025/04/14 9:27 a.m.•15 views

Security Bulletin: IBM Maximo Application Suite - IoT uses requests-2.31.0-py3-none-any.whl which is vulnerable to CVE-2024-35195.

Summary IBM Maximo Application Suite - IoT uses requests-2.31.0-py3-none-any.whl which is vulnerable to CVE-2024-35195. This bulletin contains information regarding the vulnerability and its fixture. Vulnerability Details CVEID:CVE-2024-35195 DESCRIPTION: Psf Requests could allow a local...

5.6CVSS6.2AI score0.0034EPSS

Exploits0Affected Software1

RedhatCVE•added 2025/04/12 2:4 p.m.•30 views

CVE-2023-43037

IBM Maximo Application Suite 8.11 and 9.0 could allow an authenticated user to perform unauthorized actions due to improper input validation...

6.5CVSS6.6AI score0.00265EPSS

Exploits0References3

OSV•added 2025/04/10 2:15 p.m.•0 views

CVE-2023-43037

IBM Maximo Application Suite 8.11 and 9.0 could allow an authenticated user to perform unauthorized actions due to improper input validation...

6.5CVSS5.8AI score0.00265EPSS

Exploits0References1

NVD•added 2025/04/10 2:15 p.m.•10 views

CVE-2023-43037

IBM Maximo Application Suite 8.11 and 9.0 could allow an authenticated user to perform unauthorized actions due to improper input validation...

6.5CVSS0.00265EPSS

Exploits0References1

Cvelist•added 2025/04/10 1:19 p.m.•13 views

CVE-2023-43037 IBM Maximo Application Suite improper access control

IBM Maximo Application Suite 8.11 and 9.0 could allow an authenticated user to perform unauthorized actions due to improper input validation...

6.5CVSS0.00265EPSS

Exploits0References1

Vulnrichment•added 2025/04/10 1:19 p.m.•11 views

CVE-2023-43037 IBM Maximo Application Suite improper access control

IBM Maximo Application Suite 8.11 and 9.0 could allow an authenticated user to perform unauthorized actions due to improper input validation...

6.5CVSS6.6AI score0.00265EPSS

Exploits0References1

CVE•added 2025/04/10 1:19 p.m.•51 views

CVE-2023-43037

CVE-2023-43037 affects IBM Maximo Application Suite versions 8.11 and 9.0. The root cause is improper input validation, allowing an authenticated user to perform unauthorized actions. According to IBM and multiple feeds, the vulnerability has a CVSS v3.1 base score of 6.5 (Medium) with privileges...

6.5CVSS6.3AI score0.00265EPSS

Exploits0References1Affected Software1

IBM Security Bulletins•added 2025/04/10 10:14 a.m.•17 views

Security Bulletin: IBM Maximo Application Suite uses IBM WebSphere Application Server Liberty which is vulnerable to CVE-2024-40094.

Summary IBM Maximo Application Suite uses IBM WebSphere Application Server Liberty which is vulnerable to CVE-2024-40094. This bulletin contains information regarding the vulnerability and its fixture. Vulnerability Details CVEID:CVE-2024-40094 DESCRIPTION: GraphQL Java aka graphql-java is...

5.3CVSS6.9AI score0.00943EPSS

Exploits2Affected Software1

IBM Security Bulletins•added 2025/04/10 10:11 a.m.•24 views

Security Bulletin: IBM Maximo Application Suite - IoT uses multiple dependencies which is vulnerable to CVEs.

Summary IBM Maximo Application Suite - IoT uses pip-9.0.3.dist-info, urllib3-1.24.2-py3.6.egg-info, setuptools-39.2.0.dist-info which is vulnerable to CVE-2019-20916, CVE-2023-43804, CVE-2024-6345. This bulletin contains information regarding the vulnerability and its fixture. Vulnerability Detai...

8.8CVSS7.6AI score0.03028EPSS

Exploits1Affected Software1

IBM Security Bulletins•added 2025/04/10 10:9 a.m.•16 views

Security Bulletin: IBM Maximo Application Suite - IoT uses cxf-core-3.6.4.jar which is vulnerable to CVE-2025-23184.

Summary IBM Maximo Application Suite uses cxf-core-3.6.4.jar which is vulnerable to CVE-2025-23184. This bulletin contains information regarding the vulnerability and its fixture. Vulnerability Details CVEID:CVE-2025-23184 DESCRIPTION: A potential denial of service vulnerability is present in...

7.5CVSS6.8AI score0.01806EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2025/04/10 9:49 a.m.•13 views

Security Bulletin: IBM Maximo Application Suite uses UI: Bypass Client-Side Validation which is vulnerable to CVE-2023-43037.

Summary IBM Maximo Application Suite uses UI: Bypass Client-Side Validation which is vulnerable to CVE-2023-43037. This bulletin contains information regarding the vulnerability and its fixture. Vulnerability Details CVEID:CVE-2023-43037 DESCRIPTION: IBM Maximo Application Suite could allow an...

6.5CVSS6.3AI score0.00265EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2025/04/10 6:59 a.m.•8 views

Security Bulletin: IBM SDK, Java Technology Edition Quarterly CPU - Oct 2024 - Includes Oracle Oct 2024 CPU

Summary There are multiple vulnerabilities in IBM® SDK Java™ Technology Edition, Version 8 that are used by Maximo Asset Management, Maximo Industry Solutions including Maximo for Nuclear Power, Maximo for Transportation, Maximo for Life Sciences, Maximo for Oil and Gas and Maximo for Utilities a...

Exploits0Affected Software11

IBM Security Bulletins•added 2025/04/10 6:58 a.m.•6 views

Security Bulletin: There is a vulnerability in pandas-2.2.3-cp311-cp311-manylinux_2_17_x86_64.manylinux2014_x86_64.whl used by IBM Maximo Manage application in IBM Maximo Application Suite (CVE-2024-9880)

Summary There is a vulnerability in pandas-2.2.3-cp311-cp311-manylinux217x8664.manylinux2014x8664.whl used by IBM Maximo Manage application in IBM Maximo Application Suite. Vulnerability Details CVEID:CVE-2024-9880 DESCRIPTION: Rejected reason: This CVE ID has been rejected or withdrawn by its CV...

Exploits0Affected Software1

CNNVD•added 2025/04/10 12:0 a.m.•4 views

IBM Maximo Application Suite 输入验证错误漏洞

IBM Maximo Application Suite is a single platform for intelligent asset management, monitoring, maintenance, computer vision, security and reliability from International Business Machines IBM. An input validation error vulnerability exists in IBM Maximo Application Suite versions 8.11 and 9.0,...

6.5CVSS6.3AI score0.00265EPSS

Exploits0References1

Positive Technologies•added 2025/04/10 12:0 a.m.•2 views

PT-2025-15986 · Ibm · Ibm Maximo Application Suite

Name of the Vulnerable Software and Affected Versions: IBM Maximo Application Suite versions 8.11 through 9.0 Description: The issue is related to improper input validation, allowing an authenticated user to perform unauthorized actions. Recommendations: For versions 8.11 through 9.0, update to a...

6.5CVSS5.9AI score0.00265EPSS

Exploits0References7

IBM Security Bulletins•added 2025/04/09 10:8 a.m.•12 views

Security Bulletin: There is a vulnerability in jinja2-3.1.5-py3-none-any.whl used by IBM Maximo Manage application in IBM Maximo Application Suite (CVE-2025-27516)

Summary There is a vulnerability in jinja2-3.1.5-py3-none-any.whl used by IBM Maximo Manage application in IBM Maximo Application Suite. Vulnerability Details CVEID:CVE-2025-27516 DESCRIPTION: Jinja is an extensible templating engine. Prior to 3.1.6, an oversight in how the Jinja sandboxed...

8.8CVSS6.7AI score0.00465EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2025/04/07 7:17 p.m.•52 views

Security Bulletin: IBM Maximo Application Suite - IoT uses multiple third party dependencies which is vulnerable to CVEs.

Summary IBM Maximo Application Suite - IoT uses pip-22.3.1.dist-info, zipp-3.18.1.dist-info, jinja2-3.1.4.dist-info, jinja2-3.1.4.dist-info, pip-20.2.4.dist-info, cryptography-44.0.0.dist-info, urllib3-1.26.18.dist-info, ansiblecore-2.15.11.dist-info, ansiblecore-2.15.11.dist-info,...

6.5CVSS7AI score0.02782EPSS

Exploits5Affected Software1

IBM Security Bulletins•added 2025/04/07 7:13 p.m.•26 views

Security Bulletin: IBM Maximo Application Suite - IoT uses spring-context-5.3.39.jar which is vulnerable to CVE-2024-38820.

Summary IBM Maximo Application Suite - IoT uses spring-context-5.3.39.jar which is vulnerable to CVE-2024-38820. This bulletin contains information regarding the vulnerability and its fixture. Vulnerability Details CVEID:CVE-2024-38820 DESCRIPTION: VMware Tanzu Spring Framework could provide weak...

5.3CVSS7.2AI score0.00631EPSS

Exploits1Affected Software1

IBM Security Bulletins•added 2025/04/07 7:5 p.m.•14 views

Security Bulletin: IBM Maximo Application Suite uses urllib3-1.26.18-py2.py3-none-any.whl which is vulnerable to CVE-2024-37891.

Summary IBM Maximo Application Suite uses urllib3-1.26.18-py2.py3-none-any.whl which is vulnerable to CVE-2024-37891. This bulletin contains information regarding the vulnerability and its fixture. Vulnerability Details CVEID:CVE-2024-37891 DESCRIPTION: urllib3 could allow a remote authenticated...

6.5CVSS7.4AI score0.00965EPSS

Exploits1Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by