3 matches found
Security Bulletin: IBM Maximo Asset Management could allow an authenticated user to obtain sensitive information from the WhoAmI API (CVE-2018-1528)
Summary IBM Maximo Asset Management could allow an authenticated user to obtain sensitive information from the WhoAmI API. Vulnerability Details CVEID: CVE-2018-1528 DESCRIPTION: IBM Maximo Asset Management could allow an authenticated user to obtain sensitive information from the WhoAmI API. CVS...
CVE-2018-1528
IBM Maximo Asset Management 7.6 through 7.6.3 could allow an authenticated user to obtain sensitive information from the WhoAmI API. IBM X-Force ID: 142290...
CVE-2018-1528
IBM Maximo Asset Management 7.6 (core) is affected by CVE-2018-1528, allowing an authenticated user to obtain sensitive information via the WhoAmI API, with CVSSv3 base score 4.3 (LOW to MEDIUM range depending on vector). The IBM Security Bulletin lists affected versions (7.6 and all dependent IB...