4 matches found
Security Bulletin: IBM Maximo Application Suite - Monitor Component is vulnerable to Missing or Insecure "Frame-Ancestors" policy in "Content-Security-Policy" header CVE-2024-39338
Summary IBM Maximo Application Suite - Monitor Component is vulnerable to Missing or Insecure "Frame-Ancestors" policy in "Content-Security-Policy" header CVE-2024-35145. This bulletin identifies the steps to take to address the vulnerabilities. Vulnerability Details CVEID:CVE-2024-35145...
CVE-2024-35145
IBM Maximo Application Suite 9.0.0 - Monitor Component is vulnerable to cross-site scripting. This vulnerability allows an unauthenticated attacker to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a...
CVE-2024-35145
creationtimestamp| type| source ---|---|--- 2025-01-25 14:26:20+00:00| seen| https://infosec.exchange/users/cve/statuses/113889455663072787 2025-01-25 15:05:06+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/3087 2025-01-25 18:30:36+00:00| seen|...
CVE-2024-35145 IBM Maximo Application Suite cross-site scripting
IBM Maximo Application Suite 9.0.0 - Monitor Component is vulnerable to cross-site scripting. This vulnerability allows an unauthenticated attacker to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a...