Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm maximo asset management 7.6.0.3 vulnerabilities and exploits
(subscribe to this query)
3.3
CVSSv3
CVE-2020-4650
IBM Maximo Spatial Asset Management 7.6.0.3, 7.6.0.4, 7.6.0.5, and 7.6.1.0 allows web pages to be stored locally which can be read by another user on the system. IBM X-Force ID: 186023.
Ibm Maximo Spatial Asset Management 7.6.0.5
Ibm Maximo Spatial Asset Management 7.6.0.4
Ibm Maximo Spatial Asset Management 7.6.0.3
Ibm Maximo Spatial Asset Management 7.6.1.0
4.8
CVSSv3
CVE-2020-4651
IBM Maximo Spatial Asset Management 7.6.0.3, 7.6.0.4, 7.6.0.5, and 7.6.1.0 is vulnerable to cross-site request forgery which could allow an malicious user to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM X-Force ID: 186024.
Ibm Maximo Spatial Asset Management 7.6.0.5
Ibm Maximo Spatial Asset Management 7.6.0.4
Ibm Maximo Spatial Asset Management 7.6.0.3
Ibm Maximo Spatial Asset Management 7.6.1.0
8.2
CVSSv3
CVE-2020-4409
IBM Maximo Asset Management 7.6.0 and 7.6.1 could allow a remote malicious user to conduct phishing attacks, using a tabnabbing attack. By persuading a victim to visit a specially-crafted Web site, a remote attacker could exploit this vulnerability to redirect a user to a malicio...
Ibm Maximo For Life Sciences 7.6
Ibm Maximo For Transportation 7.6.2.3
Ibm Maximo For Transportation 7.6.2.4
Ibm Control Desk 7.6.1
Ibm Maximo For Oil And Gas 7.6.1
Ibm Control Desk 7.6.1.1
Ibm Maximo For Aviation 7.6.8
Ibm Maximo For Aviation 7.6.7
Ibm Maximo For Aviation 7.6.6
Ibm Maximo For Utilities 7.6.0.2
Ibm Maximo For Utilities 7.6.0.1
Ibm Maximo For Transportation 7.6.2.5
Ibm Maximo For Nuclear Power 7.6.1
Ibm Maximo Equipment Maintenance Assistant -
Ibm Maximo For Service Providers 7.6.3.3
Ibm Maximo For Service Providers 7.6.3.2
Ibm Maximo For Service Providers 7.6.3.1
Ibm Maximo Spatial Asset Management 7.6.0.5
Ibm Maximo Spatial Asset Management 7.6.0.4
Ibm Maximo Spatial Asset Management 7.6.0.3
Ibm Maximo Spatial Asset Management 7.6.0.2
Ibm Maximo Linear Asset Manager 7.6.0.3
6.1
CVSSv3
CVE-2019-4644
IBM Maximo Asset Management 7.6 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID:...
Ibm Maximo For Life Sciences 7.6
Ibm Maximo For Transportation 7.6.2.3
Ibm Maximo For Transportation 7.6.2.4
Ibm Control Desk 7.6.1
Ibm Maximo Asset Management 7.6.1.1
Ibm Maximo For Oil And Gas 7.6.1
Ibm Control Desk 7.6.1.1
Ibm Maximo For Aviation 7.6.8
Ibm Maximo For Aviation 7.6.7
Ibm Maximo For Aviation 7.6.6
Ibm Maximo For Utilities 7.6.0.2
Ibm Maximo For Utilities 7.6.0.1
Ibm Maximo For Transportation 7.6.2.5
Ibm Maximo For Nuclear Power 7.6.1
Ibm Maximo Equipment Maintenance Assistant -
Ibm Maximo For Service Providers 7.6.3.3
Ibm Maximo For Service Providers 7.6.3.2
Ibm Maximo For Service Providers 7.6.3.1
Ibm Maximo Spatial Asset Management 7.6.0.5
Ibm Maximo Spatial Asset Management 7.6.0.4
Ibm Maximo Spatial Asset Management 7.6.0.3
Ibm Maximo Spatial Asset Management 7.6.0.2
5.4
CVSSv3
CVE-2019-4749
IBM Maximo Asset Management 7.6 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID:...
Ibm Maximo For Life Sciences 7.6
Ibm Maximo For Transportation 7.6.2.3
Ibm Maximo For Transportation 7.6.2.4
Ibm Control Desk 7.6.1
Ibm Maximo Asset Management 7.6.1.1
Ibm Maximo For Oil And Gas 7.6.1
Ibm Tivoli Integration Composer 7.6.0.2
Ibm Tivoli Integration Composer 7.6.0.1
Ibm Control Desk 7.6.1.1
Ibm Maximo For Aviation 7.6.8
Ibm Maximo For Aviation 7.6.7
Ibm Maximo For Aviation 7.6.6
Ibm Maximo For Utilities 7.6.0.2
Ibm Maximo For Utilities 7.6.0.1
Ibm Maximo For Transportation 7.6.2.5
Ibm Maximo For Nuclear Power 7.6.1
Ibm Maximo Equipment Maintenance Assistant -
Ibm Maximo For Service Providers 7.6.3.3
Ibm Maximo For Service Providers 7.6.3.2
Ibm Maximo For Service Providers 7.6.3.1
Ibm Maximo Spatial Asset Management 7.6.0.5
Ibm Maximo Spatial Asset Management 7.6.0.4
5.4
CVSSv3
CVE-2019-4446
IBM Maximo Asset Management 7.6 could allow an authenticated user perform actions they are not authorized to by modifying request parameters. IBM X-Force ID: 163490.
Ibm Maximo For Life Sciences 7.6
Ibm Maximo For Transportation 7.6.2.3
Ibm Maximo For Transportation 7.6.2.4
Ibm Control Desk 7.6.1
Ibm Maximo Asset Management 7.6.1.1
Ibm Maximo For Oil And Gas 7.6.1
Ibm Maximo Asset Management 7.6.1
Ibm Control Desk 7.6.1.1
Ibm Maximo For Aviation 7.6.8
Ibm Maximo For Aviation 7.6.7
Ibm Maximo For Aviation 7.6.6
Ibm Maximo For Utilities 7.6.0.2
Ibm Maximo For Utilities 7.6.0.1
Ibm Maximo For Transportation 7.6.2.5
Ibm Maximo For Nuclear Power 7.6.1
Ibm Maximo For Service Providers 7.6.3.3
Ibm Maximo For Service Providers 7.6.3.2
Ibm Maximo For Service Providers 7.6.3.1
Ibm Maximo Linear Asset Manager 7.6.0.3
Ibm Maximo Linear Asset Manager 7.6.0.2
Ibm Maximo Linear Asset Manager 7.6.0.1
Ibm Maximo Enterprise Adapter 7.6
4.3
CVSSv3
CVE-2017-1357
IBM Maximo Asset Management 7.5 and 7.6 could allow an authenticated user to manipulate work orders to forge emails which could be used to conduct further advanced attacks. IBM X-Force ID: 126684.
Ibm Maximo Asset Management 7.5.0.8
Ibm Maximo Asset Management 7.6.0.3
Ibm Maximo Asset Management 7.5.0.5
Ibm Maximo Asset Management Essentials 7.5.0.7
Ibm Maximo Asset Management Essentials 7.5.0.9
Ibm Maximo Asset Management 7.6.0.5
Ibm Maximo Asset Management Essentials 7.6.0.2
Ibm Maximo Asset Management Essentials 7.5.0.4
Ibm Maximo Asset Management Essentials 7.6.0.3
Ibm Maximo Asset Management Essentials 7.6.0.4
Ibm Maximo Asset Management 7.5.0.4
Ibm Maximo Asset Management 7.5.0.1
Ibm Maximo Asset Management Essentials 7.6.0.6
Ibm Maximo Asset Management Essentials 7.5.0.10
Ibm Maximo Asset Management 7.6.0.6
Ibm Maximo Asset Management Essentials 7.5.0.6
Ibm Maximo Asset Management 7.6.0.1
Ibm Maximo Asset Management Essentials 7.5.0.5
Ibm Maximo Asset Management 7.5.0.9
Ibm Maximo Asset Management Essentials 7.5.0.3
Ibm Maximo Asset Management 7.5.0.7
Ibm Maximo Asset Management 7.6.0.4
2.9
CVSSv3
CVE-2017-1124
IBM Maximo Asset Management 7.1, 7.5, and 7.6 could allow a local malicious user to obtain sensitive information using HTTP Header Injection. IBM Reference #: 1998053.
Ibm Maximo Asset Management 7.5.0.8
Ibm Maximo Asset Management 7.6.0.3
Ibm Maximo Asset Management 7.5.0.5
Ibm Maximo Asset Management 7.1.1.5
Ibm Maximo Asset Management 7.1.1.7
Ibm Maximo Asset Management 7.6.0.5
Ibm Maximo Asset Management 7.1.1.10
Ibm Maximo Asset Management 7.1.1.8
Ibm Maximo Asset Management 7.1.1.3
Ibm Maximo Asset Management 7.5.0.4
Ibm Maximo Asset Management 7.1.1.12
Ibm Maximo Asset Management 7.1.1.9
Ibm Maximo Asset Management 7.1.1.2
Ibm Maximo Asset Management 7.5.0.1
Ibm Maximo Asset Management 7.1.1.11
Ibm Maximo Asset Management 7.6.0.1
Ibm Maximo Asset Management 7.1
Ibm Maximo Asset Management 7.5.0.9
Ibm Maximo Asset Management 7.5.0.7
Ibm Maximo Asset Management 7.6.0.4
Ibm Maximo Asset Management 7.5.0.2
Ibm Maximo Asset Management 7.1.1.6
5.4
CVSSv3
CVE-2016-5905
Cross-site scripting (XSS) vulnerability in IBM Maximo Asset Management 7.5 prior to 7.5.0.10 IF3 and 7.6 prior to 7.6.0.5 IF2 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.
Ibm Maximo Asset Management 7.5.0.8
Ibm Maximo Asset Management 7.6.0.3
Ibm Maximo Asset Management 7.5.0.5
Ibm Maximo Asset Management 7.5.0.4
Ibm Maximo Asset Management 7.5.0.1
Ibm Maximo Asset Management 7.6.0.1
Ibm Maximo Asset Management 7.5.0.9
Ibm Maximo Asset Management 7.5.0.7
Ibm Maximo Asset Management 7.6.0.4
Ibm Maximo Asset Management 7.5.0.2
Ibm Maximo Asset Management 7.5.0.0
Ibm Maximo Asset Management 7.5.0.3
Ibm Maximo Asset Management 7.5.0.6
Ibm Maximo Asset Management 7.6.0.0
Ibm Maximo Asset Management 7.6.0.2
5.3
CVSSv3
CVE-2016-5987
IBM Maximo Asset Management 7.1 up to and including 7.1.1.13, 7.5 prior to 7.5.0.10 IF4, and 7.6 prior to 7.6.0.5 IF3 allows remote malicious users to obtain sensitive information via a crafted HTTP request that triggers construction of a runtime error message.
Ibm Maximo Asset Management 7.5.0.8
Ibm Maximo Asset Management 7.6.0.3
Ibm Maximo Asset Management 7.1.1.13
Ibm Maximo Asset Management 7.5.0.5
Ibm Maximo Asset Management 7.1.1.5
Ibm Maximo Asset Management 7.1.1.7
Ibm Maximo Asset Management 7.1.1.10
Ibm Maximo Asset Management 7.1.1.8
Ibm Maximo Asset Management 7.1.1.3
Ibm Maximo Asset Management 7.5.0.4
Ibm Maximo Asset Management 7.1.1.12
Ibm Maximo Asset Management 7.1.1.9
Ibm Maximo Asset Management 7.1.1.2
Ibm Maximo Asset Management 7.5.0.1
Ibm Maximo Asset Management 7.1.1.11
Ibm Maximo Asset Management 7.6.0.1
Ibm Maximo Asset Management 7.5.0.9
Ibm Maximo Asset Management 7.5.0.7
Ibm Maximo Asset Management 7.6.0.4
Ibm Maximo Asset Management 7.5.0.2
Ibm Maximo Asset Management 7.1.1.6
Ibm Maximo Asset Management 7.1.2
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
IMAP
CVE-2024-36103
CVE-2024-28995
CVE-2024-37325
CVE-2024-30078
CVE-2024-30082
SQL injection
CVE-2024-30052
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »