Maximo Asset Management Security Vulnerabilities and Issues — Maximo Asset Management CVE List

Lucene search

IbmMaximo Asset Management

3 matches found

CVE•added 2017/05/26 4:29 p.m.•50 views

CVE-2017-1292

IBM Maximo Asset Management 7.5 and 7.6 generates error messages that could reveal sensitive information that could be used in further attacks against the system. IBM X-Force ID: 125153.

5.3CVSS5AI score0.00185EPSS

CVE•added 2017/05/26 4:29 p.m.•42 views

CVE-2017-1291

IBM Maximo Asset Management 7.5 and 7.6 is vulnerable to HTTP response splitting attacks. A remote attacker could exploit this vulnerability using specially-crafted URL to cause the server to return a split response, once the URL is clicked. This would allow the attacker to perform further attacks,...

5.4CVSS5.4AI score0.00146EPSS

CVE•added 2017/05/03 5:59 p.m.•36 views

CVE-2016-9976

IBM Maximo Asset Management 7.1, 7.5, and 7.6 could allow a remote attacker to include arbitrary files. A remote attacker could send a specially-crafted URL request, which could allow the attacker to execute arbitrary code on the vulnerable server. IBM X-Force ID: 120252.

8.4CVSS8.4AI score0.02205EPSS