CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

2897 matches found

IBM Security Bulletins•added 2025/02/14 6:34 a.m.•9 views

Security Bulletin: IBM Maximo Application Suite - Monitor Component is vulnerable to jinja2-3.1.4-py3-none-any.whl (CVE-2024-56326, CVE-2024-56201)

Summary IBM Maximo Application Suite - Monitor Component is vulnerable to jinja2-3.1.4-py3-none-any.whl CVE-2024-56326, CVE-2024-56201. This bulletin identifies the steps to take to address the vulnerabilities. Vulnerability Details CVEID:CVE-2024-56326 DESCRIPTION: Jinja is an extensible...

8.8CVSS7.1AI score0.00496EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2025/02/13 9:52 a.m.•6 views

Security Bulletin: IBM Maximo Application Suite - Monitor Component is vulnerable to virtualenv-20.17.1-py3-none-any.whl CVE-2024-53899

Summary IBM Maximo Application Suite - Monitor Component is vulnerable to virtualenv-20.17.1-py3-none-any.whl CVE-2024-53899. This bulletin identifies the steps to take to address the vulnerabilities. Vulnerability Details CVEID:CVE-2024-53899 DESCRIPTION: virtualenv before 20.26.6 allows command...

8.4CVSS7.4AI score0.01526EPSS

Exploits1Affected Software1

IBM Security Bulletins•added 2025/02/13 9:35 a.m.•8 views

Security Bulletin: IBM Maximo Application Suite - Monitor Component is vulnerable to bootstrap-4.6.2 CVE-2024-6531

Summary IBM Maximo Application Suite - Monitor Component is vulnerable to bootstrap-4.6.2 CVE-2024-6531. This bulletin identifies the steps to take to address the vulnerabilities. Vulnerability Details CVEID:CVE-2024-6531 DESCRIPTION: Node.js Bootstrap module is vulnerable to cross-site scripting...

6.6AI score

Exploits0Affected Software1

IBM Security Bulletins•added 2025/02/10 1:2 p.m.•10 views

Security Bulletin: IBM Maximo Application Suite - Monitor Component is vulnerable to Werkzeug-2.3.4-py3-none-any.whl CVE-2023-46136

Summary IBM Maximo Application Suite - Monitor Component is vulnerable to Werkzeug-2.3.4-py3-none-any.whl CVE-2023-46136. This bulletin identifies the steps to take to address the vulnerabilities. Vulnerability Details CVEID:CVE-2023-46136 DESCRIPTION: Pallets Werkzeug is vulnerable to a denial o...

8CVSS8.4AI score0.03397EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2025/02/10 12:59 p.m.•6 views

Security Bulletin: IBM Maximo Application Suite - Monitor Component is vulnerable to nanoid-3.3.7.tgz CVE-2024-55565

Summary IBM Maximo Application Suite - Monitor Component is vulnerable to nanoid-3.3.7.tgz CVE-2024-55565. This bulletin identifies the steps to take to address the vulnerabilities. Vulnerability Details CVEID:CVE-2024-55565 DESCRIPTION: nanoid aka Nano ID before 5.0.9 mishandles non-integer...

4.3CVSS4.6AI score0.00666EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2025/02/10 12:59 p.m.•7 views

Security Bulletin: IBM Maximo Application Suite - Monitor Component is vulnerable to WebSphere Application Server Liberty CVE-2024-7254

Summary IBM Maximo Application Suite - Monitor Component is vulnerable to WebSphere Application Server Liberty CVE-2024-7254. This bulletin identifies the steps to take to address the vulnerabilities. Vulnerability Details CVEID:CVE-2024-7254 DESCRIPTION: Any project that parses untrusted Protoco...

8.7CVSS9.2AI score0.0279EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2025/02/10 12:59 p.m.•10 views

Security Bulletin: IBM Maximo Application Suite - Monitor Component is vulnerable to cross-spawn-7.0.3.tgz CVE-2024-21538

Summary IBM Maximo Application Suite - Monitor Component is vulnerable to cross-spawn-7.0.3.tgz CVE-2024-21538. This bulletin identifies the steps to take to address the vulnerabilities. Vulnerability Details CVEID:CVE-2024-21538 DESCRIPTION: Versions of the package cross-spawn before 7.0.5 are...

8.7CVSS7.4AI score0.00873EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2025/02/10 12:58 p.m.•15 views

Security Bulletin: IBM Maximo Application Suite - Monitor Component is vulnerable to cookie-0.5.0.tgz CVE-2024-47764

Summary IBM Maximo Application Suite - Monitor Component is vulnerable to cookie-0.5.0.tgz CVE-2024-47764. This bulletin identifies the steps to take to address the vulnerabilities. Vulnerability Details CVEID:CVE-2024-47764 DESCRIPTION: jshttp cookie could allow a remote attacker to bypass...

6.9CVSS6AI score0.00749EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2025/02/10 12:58 p.m.•11 views

Security Bulletin: IBM Maximo Application Suite - Monitor Component is vulnerable to cryptography-42.0.7-cp37-abi3-manylinux_2_28_x86_64.whl CVE-2024-6119

Summary IBM Maximo Application Suite - Monitor Component is vulnerable to cryptography-42.0.7-cp37-abi3-manylinux228x8664.whl CVE-2024-6119. This bulletin identifies the steps to take to address the vulnerabilities. Vulnerability Details CVEID:CVE-2024-6119 DESCRIPTION: OpenSSL is vulnerable to a...

7.5CVSS7.5AI score0.66594EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2025/02/10 12:58 p.m.•14 views

Security Bulletin: IBM Maximo Application Suite - Monitor Component is vulnerable to cookie-0.4.0.tgz CVE-2024-47764

Summary IBM Maximo Application Suite - Monitor Component is vulnerable to cookie-0.4.0.tgz CVE-2024-47764. This bulletin identifies the steps to take to address the vulnerabilities. Vulnerability Details CVEID:CVE-2024-47764 DESCRIPTION: jshttp cookie could allow a remote attacker to bypass...

6.9CVSS6.1AI score0.00749EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2025/02/10 12:57 p.m.•5 views

Security Bulletin: IBM Maximo Application Suite - Monitor Component is vulnerable to setuptools-68.0.0-py3-none-any.whl CVE-2024-6345

Summary IBM Maximo Application Suite - Monitor Component is vulnerable to setuptools-68.0.0-py3-none-any.whl CVE-2024-6345. This bulletin identifies the steps to take to address the vulnerabilities. Vulnerability Details CVEID:CVE-2024-6345 DESCRIPTION: pypa/setuptools could allow a remote attack...

8.8CVSS7.4AI score0.0183EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2025/02/06 5:31 a.m.•8 views

Security Bulletin: IBM Maximo Application Suite uses path-to-regexp-0.1.7.tgz which is vulnerable to CVE-2024-45296.

Summary IBM Maximo Application Suite uses path-to-regexp-0.1.7.tgz which is vulnerable to CVE-2024-45296. This bulletin contains information regarding the vulnerability and its fixture. Vulnerability Details CVEID:CVE-2024-45296 DESCRIPTION: path-to-regexp turns path strings into a regular...

7.5CVSS6.1AI score0.00932EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2025/02/06 5:31 a.m.•19 views

Security Bulletin: IBM Maximo Application Suite - IoT Component uses bcprov-jdk18on-1.71.jar, werkzeug-3.0.4-py3-none-any.whl and jetty-server-10.0.22.ja which is vulnerable to multiple CVEs.

Summary IBM Maximo Application Suite - IoT Component uses bcprov-jdk18on-1.71.jar, werkzeug-3.0.4-py3-none-any.whl and jetty-server-10.0.22.jar which is vulnerable to CVE-2024-30171, CVE-2023-33201, CVE-2023-33202, CVE-2024-29857, CVE-2024-30172, CVE-2024-8184, CVE-2024-6763, CVE-2024-49767,...

7.5CVSS7.9AI score0.011EPSS

Exploits2Affected Software1

CNVD•added 2025/02/06 12:0 a.m.•8 views

IBM Maximo Application Suite Information Disclosure Vulnerability

IBM Maximo Application Suite is a single platform for intelligent asset management, monitoring, maintenance, computer vision, security and reliability from International Business Machines IBM. An information disclosure vulnerability exists in IBM Maximo Application Suite that stems from allowing...

5.3CVSS6AI score0.00283EPSS

Exploits0References1

CNVD•added 2025/02/06 12:0 a.m.•7 views

IBM Maximo Application Suite Input Validation Error Vulnerability

IBM Maximo Application Suite is a single platform for intelligent asset management, monitoring, maintenance, computer vision, security and reliability from International Business Machines IBM. IBM Maximo Application Suite has an input validation error vulnerability that stems from not neutralizin...

5.3CVSS6.6AI score0.00262EPSS

Exploits0References1

CNVD•added 2025/02/06 12:0 a.m.•9 views

IBM Maximo Application Suite SQL Injection Vulnerability

IBM Maximo Application Suite is a single platform for intelligent asset management, monitoring, maintenance, computer vision, security and reliability from International Business Machines IBM. An SQL injection vulnerability exists in IBM Maximo Application Suite. The vulnerability stems from the...

8.8CVSS7.4AI score0.00331EPSS

Exploits0References1

CNVD•added 2025/02/06 12:0 a.m.•8 views

IBM Maximo Asset Management File Upload Vulnerability

IBM Maximo Asset Management is a comprehensive asset lifecycle and maintenance management solution from International Business Machines IBM. The solution is capable of managing all types of assets, such as facilities, transportation, etc., on a single platform with a single point of control for...

6.5CVSS6.5AI score0.00318EPSS

Exploits0References1

CNVD•added 2025/02/06 12:0 a.m.•8 views

IBM Maximo Application Suite Cross-Site Scripting Vulnerability (CNVD-2025-02820)

IBM Maximo Application Suite is a single platform for intelligent asset management, monitoring, maintenance, computer vision, security and reliability from International Business Machines IBM. A cross-site scripting vulnerability exists in IBM Maximo Application Suite version 9.0.0. The...

6.1CVSS6.2AI score0.00238EPSS

Exploits0References1

BDU FSTEC•added 2025/02/06 12:0 a.m.•2 views

The vulnerability of the Monitor component of the IBM Maximo Application Suite, a platform for managing corporate assets based on artificial intelligence, allows a perpetrator to disclose protected information.

The vulnerability of the Monitor component of the IBM Maximo Application Suite, a platform for managing corporate assets based on artificial intelligence, is related to improper processing of output data from registration logs. Exploiting this vulnerability can allow an attacker to disclose...

5.3CVSS5.4AI score0.00262EPSS

Exploits0References2Affected Software1

BDU FSTEC•added 2025/02/06 12:0 a.m.•4 views

Vulnerability of the Monitor component of the IBM Maximo Application Suite, a cloud-based artificial intelligence-driven corporate asset management platform, allowing unauthorized access to protected information

The vulnerability of the Monitor component of the IBM Maximo Application Suite, a platform for managing corporate assets based on artificial intelligence, is related to insufficient protection of sensitive data in the source code. Exploiting this vulnerability could allow an attacker operating...

5.3CVSS5.5AI score0.00283EPSS

Exploits0References2Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by