Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm maximo asset management vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2021-20509
IBM Maximo Asset Management 7.6.0 and 7.6.1 is potentially vulnerable to CSV Injection. A remote attacker could execute arbitrary commands on the system, caused by improper validation of csv file contents. IBM X-Force ID: 198243.
Ibm Maximo Asset Management
9
CVSSv2
CVE-2020-4521
IBM Maximo Asset Management 7.6.0 and 7.6.1 could allow a remote authenticated malicious user to execute arbitrary code on the system, caused by an unsafe deserialization in Java. By sending specially-crafted request, an attacker could exploit this vulnerability to execute arbitr...
Ibm Maximo Asset Management
9
CVSSv2
CVE-2018-1524
IBM Maximo Asset Management 7.6 up to and including 7.6.3 installs with a default administrator account that a remote intruder could use to gain administrator access to the system. This vulnerability is due to an incomplete fix for CVE-2015-4966. IBM X-Force ID: 142116.
Ibm Maximo Asset Management
Ibm Maximo For Aviation 7.6.0.0
Ibm Maximo For Aviation 7.6.1.0
Ibm Maximo For Oil And Gas 7.5.0.0
Ibm Maximo For Utilities 7.6.0.0
Ibm Maximo For Nuclear Power 7.6.0.0
Ibm Maximo For Oil And Gas 7.6.0.0
Ibm Maximo For Aviation 7.6.2.0
Ibm Maximo For Aviation 7.6.3.0
Ibm Smartcloud Control Desk 7.6.0.1
Ibm Maximo For Life Sciences 7.6.0.0
Ibm Maximo For Transportation 7.6.2.0
Ibm Maximo For Transportation 7.6.2.1
Ibm Maximo For Transportation 7.6.2.2
Ibm Maximo For Transportation 7.6.2.3
Ibm Maximo For Aviation 7.6.2.1
Ibm Maximo For Transportation 7.6.1.0
Ibm Maximo For Transportation 7.6.2.4
Ibm Smartcloud Control Desk 7.6.0.0
8.5
CVSSv2
CVE-2019-4364
IBM Maximo Asset Management 7.6 is vulnerable to CSV injection, which could allow a remote authenticated malicious user to execute arbirary commands on the system. IBM X-Force ID: 161680.
Ibm Maximo Asset Management 7.6
Ibm Maximo For Life Sciences 7.6
Ibm Smartcloud Control Desk -
Ibm Tivoli Integration Composer -
Ibm Maximo For Aviation 7.6
Ibm Maximo For Utilities 7.6
Ibm Maximo For Aviation 7.6.2.1
Ibm Maximo For Transportation 7.6.2.1
Ibm Maximo For Transportation 7.6.2.2
Ibm Maximo For Transportation 7.6.2.3
Ibm Maximo For Transportation 7.6.2.4
Ibm Maximo For Aviation 7.6.1
Ibm Maximo For Aviation 7.6.2
Ibm Maximo For Aviation 7.6.3
Ibm Maximo For Transportation 7.6.2
Ibm Maximo For Transportation 7.6.1
Ibm Maximo For Oil And Gas 7.6.0
Ibm Maximo For Nuclear Power 7.6.0
Ibm Control Desk 7.6.0.1
Ibm Control Desk 7.6.0
7.5
CVSSv2
CVE-2020-4493
IBM Maximo Asset Management 7.6.0 and 7.6.1 could allow an malicious user to bypass authentication and issue commands using a specially crafted HTTP command. IBM X-Force ID: 181995.
Ibm Maximo Asset Management
7.5
CVSSv2
CVE-2017-1175
IBM Maximo Asset Management 7.1, 7.5, and 7.6 is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements, which could allow the malicious user to view, add, modify or delete information in the back-end database. IBM X-Force ID: 123297.
Ibm Maximo Asset Management 7.1.1
Ibm Maximo Asset Management 7.6
Ibm Maximo Asset Management 7.1
Ibm Maximo Asset Management 7.5
7.5
CVSSv2
CVE-2013-5395
IBM Maximo Asset Management 6.2 up to and including 6.2.8, 7.1 prior to 7.1.1.12, and 7.5 prior to 7.5.0.5 allows remote malicious users to bypass intended access restrictions via unspecified vectors.
Ibm Maximo Asset Management 7.1
Ibm Maximo Asset Management 7.1.1.6
Ibm Maximo Asset Management 7.1.1.7
Ibm Maximo Asset Management 7.1.1.10
Ibm Maximo Asset Management 7.1.1.11
Ibm Maximo Asset Management 7.1.1.2
Ibm Maximo Asset Management 7.1.1.5
Ibm Maximo Asset Management 7.1.1
Ibm Maximo Asset Management 7.1.1.1
Ibm Maximo Asset Management 7.1.1.8
Ibm Maximo Asset Management 7.1.1.9
Ibm Maximo Asset Management 7.5.0.2
Ibm Maximo Asset Management 7.5.0.0
Ibm Maximo Asset Management 7.5.0.3
Ibm Maximo Asset Management 7.5.0.4
Ibm Maximo Asset Management 7.5.0.1
Ibm Maximo Asset Management 6.2.3
Ibm Maximo Asset Management 6.2.2
Ibm Maximo Asset Management 6.2.6.1
Ibm Maximo Asset Management 6.2.6
Ibm Maximo Asset Management 6.2.5
Ibm Maximo Asset Management 6.2.4
6.8
CVSSv2
CVE-2013-3323
A Privilege Escalation Vulnerability exists in IBM Maximo Asset Management 7.5, 7.1, and 6.2, when WebSeal with Basic Authentication is used, due to a failure to invalidate the authentication session, which could let a malicious user obtain unauthorized access.
Ibm Change And Configuration Management Database 7.1
Ibm Change And Configuration Management Database 7.2
Ibm Maximo Asset Management 6.2
Ibm Maximo Asset Management 7.1
Ibm Maximo Asset Management 7.5
Ibm Maximo Asset Management Essentials 6.2
Ibm Maximo Asset Management Essentials 7.1
Ibm Maximo Asset Management Essentials 7.5
Ibm Maximo For Government 6.2
Ibm Maximo For Government 7.1
Ibm Maximo For Government 7.5
Ibm Maximo For Life Sciences 6.2
Ibm Maximo For Life Sciences 6.4
Ibm Maximo For Life Sciences 6.5
Ibm Maximo For Life Sciences 7.1
Ibm Maximo For Life Sciences 7.5
Ibm Maximo For Nuclear Power 6.2
Ibm Maximo For Nuclear Power 6.3
Ibm Maximo For Nuclear Power 7.1
Ibm Maximo For Nuclear Power 7.5
Ibm Maximo For Oil And Gas 6.2
Ibm Maximo For Oil And Gas 6.3
6.8
CVSSv2
CVE-2016-9976
IBM Maximo Asset Management 7.1, 7.5, and 7.6 could allow a remote malicious user to include arbitrary files. A remote attacker could send a specially-crafted URL request, which could allow the malicious user to execute arbitrary code on the vulnerable server. IBM X-Force ID: 120...
Ibm Maximo Asset Management 7.5
Ibm Maximo Asset Management Essentials 7.1
Ibm Maximo Asset Management Essentials 7.5
Ibm Maximo Asset Management 7.1
Ibm Maximo Asset Management 7.6
6.8
CVSSv2
CVE-2012-3323
IBM Maximo Asset Management 6.2 prior to 6.2.8, 7.1 prior to 7.1.1.12, and 7.5 prior to 7.5.0.3 allows remote malicious users to gain privileges via unspecified vectors.
Ibm Maximo Asset Management 6.2.7
Ibm Maximo Asset Management 6.2.6.1
Ibm Maximo Asset Management 6.2
Ibm Maximo Asset Management 6.2.4
Ibm Maximo Asset Management 6.2.3
Ibm Maximo Asset Management 6.2.2
Ibm Maximo Asset Management 6.2.1
Ibm Maximo Asset Management 6.2.6
Ibm Maximo Asset Management 6.2.5
Ibm Maximo Asset Management 7.5.0.0
Ibm Maximo Asset Management 7.5.0.1
Ibm Maximo Asset Management 7.5.0.2
Ibm Maximo Asset Management 7.1.1.1
Ibm Maximo Asset Management 7.1.1.10
Ibm Maximo Asset Management 7.1.1.5
Ibm Maximo Asset Management 7.1.1.6
Ibm Maximo Asset Management 7.1.1.7
Ibm Maximo Asset Management 7.1
Ibm Maximo Asset Management 7.1.1
Ibm Maximo Asset Management 7.1.1.8
Ibm Maximo Asset Management 7.1.1.9
Ibm Maximo Asset Management 7.1.1.11
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
CVE-2006-4304
CVE-2023-26603
CVE-2024-28327
CVE-2023-50363
CVE-2024-21905
template injection
CVE-2024-3400
cross-site request forgery
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »