Lucene search
+L

4 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2025/01/28 10:8 p.m.26 views

Security Bulletin: IBM Maximo Application Suite - Monitor Component is vulnerable to Missing or Insecure "Frame-Ancestors" policy in "Content-Security-Policy" header CVE-2024-39338

Summary IBM Maximo Application Suite - Monitor Component is vulnerable to Missing or Insecure "Frame-Ancestors" policy in "Content-Security-Policy" header CVE-2024-35145. This bulletin identifies the steps to take to address the vulnerabilities. Vulnerability Details CVEID:CVE-2024-35145...

7.5CVSS6.8AI score0.01414EPSS
Exploits1Affected Software1
NVD
NVD
added 2025/01/25 3:15 p.m.14 views

CVE-2024-35145

IBM Maximo Application Suite 9.0.0 - Monitor Component is vulnerable to cross-site scripting. This vulnerability allows an unauthenticated attacker to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a...

6.1CVSS0.00248EPSS
Exploits0References1
Circl
Circl
added 2025/01/25 2:26 p.m.7 views

CVE-2024-35145

creationtimestamp| type| source ---|---|--- 2025-01-25 14:26:20+00:00| seen| https://infosec.exchange/users/cve/statuses/113889455663072787 2025-01-25 15:05:06+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/3087 2025-01-25 18:30:36+00:00| seen|...

6.1CVSS5.7AI score0.00248EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2025/01/25 2:21 p.m.11 views

CVE-2024-35145 IBM Maximo Application Suite cross-site scripting

IBM Maximo Application Suite 9.0.0 - Monitor Component is vulnerable to cross-site scripting. This vulnerability allows an unauthenticated attacker to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a...

6.1CVSS6.1AI score0.00248EPSS
Exploits0References1
Rows per page
Query Builder