Lucene search
IbmVULNRICHMENT:CVE-2023-32333HistoryFeb 02, 2024 - 1:55 a.m.
CVE-2023-32333 IBM Maximo Asset Management improper access control
2024-02-0201:55:05
CWE-284
ibm
github.com
5
ibm maximo asset management
remote attacker
improper access control
CVSS3
6.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
AI Score
6.4
Confidence
Low
SSVC
Exploitation
none
Automatable
yes
Technical Impact
partial
IBM Maximo Asset Management 7.6.1.3 could allow a remote attacker to log into the admin panel due to improper access controls. IBM X-Force ID: 255073.
CNA Affected
[
{
"vendor": "IBM",
"product": "Maximo Asset Management",
"versions": [
{
"status": "affected",
"version": "7.6.1.3"
}
],
"defaultStatus": "unaffected"
}
]ADP Affected
[
{
"cpes": [
"cpe:2.3:a:ibm:maximo_asset_management:7.6.1.3:*:*:*:*:*:*:*"
],
"vendor": "ibm",
"product": "maximo_asset_management",
"versions": [
{
"status": "affected",
"version": "7.6.1.3"
}
],
"defaultStatus": "unknown"
}
]Related
cnvd
cnvd
IBM Maximo Asset Management Access Control Error Vulnerability
2024-02-22 00:00:00
hackerone
hackerone
prion
prion
Improper access control
2024-02-02 02:15:00
cvelist
cvelist
CVE-2023-32333 IBM Maximo Asset Management improper access control
2024-02-02 01:55:05
nvd
nvd
CVE-2023-32333
2024-02-02 02:15:16
ibm
ibm
cve
cve
CVE-2023-32333
2024-02-02 02:15:16
CVSS3
6.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
AI Score
6.4
Confidence
Low
SSVC
Exploitation
none
Automatable
yes
Technical Impact
partial
Related for VULNRICHMENT:CVE-2023-32333