Maximo Asset Management Security Vulnerabilities and Issues — Maximo Asset Management CVE List

Lucene search

IbmMaximo Asset Management

3 matches found

CVE•added 2021/08/12 4:15 p.m.•39 views

CVE-2021-20509

IBM Maximo Asset Management 7.6.0 and 7.6.1 is potentially vulnerable to CSV Injection. A remote attacker could execute arbitrary commands on the system, caused by improper validation of csv file contents. IBM X-Force ID: 198243.

10CVSS9.4AI score0.00406EPSS

CVE•added 2021/08/27 4:15 p.m.•39 views

CVE-2021-29744

IBM Maximo Asset Management 7.6.0 and 7.6.1 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 201694...

5.4CVSS5.2AI score0.00215EPSS

CVE•added 2021/08/30 5:15 p.m.•37 views

CVE-2021-29743

IBM Maximo Asset Management 7.6.0 and 7.6.1 is vulnerable to stored cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID:...

6.4CVSS5.2AI score0.00204EPSS