Maximo Asset Management@7.5 Security Vulnerabilities and Issues — Maximo Asset Management@7.5 CVE List

Lucene search

IbmMaximo Asset Management7.5

3 matches found

CVE•added 2018/02/14 3:29 p.m.•44 views

CVE-2017-1499

IBM Maximo Asset Management 7.5 and 7.6 could allow a remote attacker to include arbitrary files, which could allow the attacker to execute arbitrary code on the vulnerable Web server. IBM X-Force ID: 129106.

8.8CVSS8.7AI score0.02065EPSS

CVE•added 2018/03/27 5:29 p.m.•38 views

CVE-2015-5016

IBM Maximo Asset Management 7.1, 7.5, and 7.6; Maximo Asset Management Essentials 7.1 and 7.5; Control Desk 7.5 and 7.6; Tivoli Asset Management for IT 7.1 and 7.2; and certain other IBM products allow remote authenticated users to bypass intended access restrictions and read arbitrary ticket workl...

4.3CVSS4.2AI score0.00105EPSS

CVE•added 2018/02/22 7:29 p.m.•32 views

CVE-2018-1414

IBM Maximo Asset Management 7.5 and 7.6 is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements, which could allow the attacker to view, add, modify or delete information in the back-end database. IBM X-Force ID: 138820.

8.8CVSS8.7AI score0.00648EPSS