2 matches found
CVE-2019-4286
CVE-2019-4286 affects IBM Maximo Anywhere versions 7.6.2.0/7.6.2.1 and 7.6.3.0/7.6.3.1. The issue allows disclosure of highly sensitive user information (e.g., usernames, passwords, session tokens, cookies) to an authenticated user with physical access by exposing data in device/console logs. Aff...
Security Bulletin: Sensitive Information Disclosed in Logs (CVE-2019-4286)
Summary IBM Maximo Anywhere discloses sensitive information such as usernames, passwords, session token and other cookies in device/console logs. Vulnerability Details CVEID: CVE-2019-4286 DESCRIPTION: IBM Maximo Anywhere could disclose highly senstiive user information to an authenticated user...