Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm maximo asset management 7.6 vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2017-1175
IBM Maximo Asset Management 7.1, 7.5, and 7.6 is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements, which could allow the malicious user to view, add, modify or delete information in the back-end database. IBM X-Force ID: 123297.
Ibm Maximo Asset Management 7.5
Ibm Maximo Asset Management 7.1
Ibm Maximo Asset Management 7.6
Ibm Maximo Asset Management 7.1.1
8.8
CVSSv3
CVE-2018-1699
IBM Maximo Asset Management 7.6 up to and including 7.6.3 is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements, which could allow the malicious user to view, add, modify or delete information in the back-end database. IBM X-Force ID: 14596...
Ibm Maximo Asset Management
8.8
CVSSv3
CVE-2018-1524
IBM Maximo Asset Management 7.6 up to and including 7.6.3 installs with a default administrator account that a remote intruder could use to gain administrator access to the system. This vulnerability is due to an incomplete fix for CVE-2015-4966. IBM X-Force ID: 142116.
Ibm Maximo For Oil And Gas 7.5.0.0
Ibm Smartcloud Control Desk 7.6.0.1
Ibm Maximo For Aviation 7.6.0.0
Ibm Maximo For Aviation 7.6.1.0
Ibm Maximo For Aviation 7.6.2.0
Ibm Maximo For Aviation 7.6.2.1
Ibm Maximo For Aviation 7.6.3.0
Ibm Maximo For Transportation 7.6.1.0
Ibm Maximo For Transportation 7.6.2.0
Ibm Maximo For Transportation 7.6.2.1
Ibm Maximo For Transportation 7.6.2.2
Ibm Maximo For Transportation 7.6.2.3
Ibm Maximo For Transportation 7.6.2.4
Ibm Smartcloud Control Desk 7.6.0.0
Ibm Maximo For Life Sciences 7.6.0.0
Ibm Maximo For Utilities 7.6.0.0
Ibm Maximo For Nuclear Power 7.6.0.0
Ibm Maximo For Oil And Gas 7.6.0.0
Ibm Maximo Asset Management
8.8
CVSSv3
CVE-2018-1414
IBM Maximo Asset Management 7.5 and 7.6 is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements, which could allow the malicious user to view, add, modify or delete information in the back-end database. IBM X-Force ID: 138820.
Ibm Maximo Asset Management 7.5.0.0
Ibm Maximo Asset Management 7.6.0.0
Ibm Maximo Asset Management Essentials 7.5.0.0
8.8
CVSSv3
CVE-2017-1499
IBM Maximo Asset Management 7.5 and 7.6 could allow a remote malicious user to include arbitrary files, which could allow the malicious user to execute arbitrary code on the vulnerable Web server. IBM X-Force ID: 129106.
Ibm Maximo Asset Management 7.5.0.0
Ibm Maximo Asset Management 7.6.0.0
Ibm Maximo Asset Management Essentials 7.5.0.0
8.8
CVSSv3
CVE-2016-9984
IBM Maximo Asset Management 7.5 and 7.6 could allow a remote authenticated malicious user to execute arbitrary commands on the system as administrator. IBM X-Force ID: 120276.
Ibm Maximo Asset Management 7.5
Ibm Maximo Asset Management 7.6
8.8
CVSSv3
CVE-2016-9977
IBM Maximo Asset Management 7.1, 7.5, and 7.6 could allow a remote malicious user to hijack a user's session, caused by the failure to invalidate an existing session identifier. An attacker could exploit this vulnerability to gain access to another user's session. IBM X...
Ibm Maximo Asset Management 7.5
Ibm Maximo Asset Management Essentials 7.5
Ibm Maximo Asset Management 7.1
Ibm Maximo Asset Management 7.6
Ibm Maximo Asset Management Essentials 7.1
8.8
CVSSv3
CVE-2015-0104
IBM Tivoli IT Asset Management for IT, Tivoli Service Request Manager, and Change and Configuration Management Database 7.1 up to and including 7.1.1.8 and 7.2 and Maximo Asset Management and Maximo Industry Solutions 7.1 up to and including 7.1.1.8, 7.5 prior to 7.5.0.7 IFIX003,...
Ibm Maximo Asset Management 7.1.1.5
Ibm Maximo For Utilities 7.1
Ibm Maximo Asset Management 7.1.1.7
Ibm Maximo For Nuclear Power 7.1
Ibm Tivoli Service Request Manager 7.1
Ibm Maximo Asset Management 7.1.1.8
Ibm Maximo Asset Management 7.1.1.2
Ibm Change And Configuration Management Database 7.1
Ibm Tivoli Asset Management For It 7.2
Ibm Maximo Asset Management 7.1
Ibm Maximo For Oil And Gas 7.1
Ibm Maximo For Government 7.1
Ibm Change And Configuration Management Database 7.2
Ibm Tivoli Asset Management For It 7.1
Ibm Maximo Asset Management 7.1.1.6
Ibm Maximo For Life Sciences 7.1
Ibm Tivoli Service Request Manager 7.2
Ibm Maximo Asset Management 7.1.1
Ibm Maximo For Transportation 7.1
Ibm Maximo Asset Management Essentials 7.1
Ibm Maximo Asset Management 7.1.1.1
1 EDB exploit
8.4
CVSSv3
CVE-2016-9976
IBM Maximo Asset Management 7.1, 7.5, and 7.6 could allow a remote malicious user to include arbitrary files. A remote attacker could send a specially-crafted URL request, which could allow the malicious user to execute arbitrary code on the vulnerable server. IBM X-Force ID: 120...
Ibm Maximo Asset Management 7.5
Ibm Maximo Asset Management Essentials 7.5
Ibm Maximo Asset Management 7.1
Ibm Maximo Asset Management 7.6
Ibm Maximo Asset Management Essentials 7.1
8.2
CVSSv3
CVE-2020-4409
IBM Maximo Asset Management 7.6.0 and 7.6.1 could allow a remote malicious user to conduct phishing attacks, using a tabnabbing attack. By persuading a victim to visit a specially-crafted Web site, a remote attacker could exploit this vulnerability to redirect a user to a malicio...
Ibm Maximo For Life Sciences 7.6
Ibm Maximo For Transportation 7.6.2.3
Ibm Maximo For Transportation 7.6.2.4
Ibm Control Desk 7.6.1
Ibm Maximo For Oil And Gas 7.6.1
Ibm Control Desk 7.6.1.1
Ibm Maximo For Aviation 7.6.8
Ibm Maximo For Aviation 7.6.7
Ibm Maximo For Aviation 7.6.6
Ibm Maximo For Utilities 7.6.0.2
Ibm Maximo For Utilities 7.6.0.1
Ibm Maximo For Transportation 7.6.2.5
Ibm Maximo For Nuclear Power 7.6.1
Ibm Maximo Equipment Maintenance Assistant -
Ibm Maximo For Service Providers 7.6.3.3
Ibm Maximo For Service Providers 7.6.3.2
Ibm Maximo For Service Providers 7.6.3.1
Ibm Maximo Spatial Asset Management 7.6.0.5
Ibm Maximo Spatial Asset Management 7.6.0.4
Ibm Maximo Spatial Asset Management 7.6.0.3
Ibm Maximo Spatial Asset Management 7.6.0.2
Ibm Maximo Linear Asset Manager 7.6.0.3
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
IMAP
CVE-2024-36103
CVE-2024-28995
CVE-2024-37325
CVE-2024-30078
CVE-2024-30082
SQL injection
CVE-2024-30052
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »