2 matches found
CVE-2018-1414
IBM Maximo Asset Management 7.5 and 7.6 is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements, which could allow the attacker to view, add, modify or delete information in the back-end database. IBM X-Force ID: 138820...
CVE-2018-1414
CVE-2018-1414 affects IBM Maximo Asset Management core products: 7.6 and 7.5 (and Maximo Asset Management Essentials 7.5), with a SQL injection vulnerability that enables a remote attacker to view, add, modify, or delete data in the back-end database. The root cause is an injectable SQL path in t...