Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm maximo asset management 7.6 vulnerabilities and exploits
(subscribe to this query)
6
CVSSv2
CVE-2017-1352
IBM Maximo Asset Management 7.5 and 7.6 could allow an authenticated user to inject commands into work orders that could be executed by another user that downloads the affected file. IBM X-Force ID: 126538.
Ibm Maximo Asset Management 7.6
Ibm Maximo Asset Management 7.5
4
CVSSv2
CVE-2017-1357
IBM Maximo Asset Management 7.5 and 7.6 could allow an authenticated user to manipulate work orders to forge emails which could be used to conduct further advanced attacks. IBM X-Force ID: 126684.
Ibm Maximo Asset Management Essentials 7.5.0.10
Ibm Maximo Asset Management Essentials 7.6.0.7
Ibm Maximo Asset Management Essentials 7.6.0.6
Ibm Maximo Asset Management Essentials 7.6.0.5
Ibm Maximo Asset Management 7.5.0.8
Ibm Maximo Asset Management 7.5.0.9
Ibm Maximo Asset Management 7.5.0.10
Ibm Maximo Asset Management 7.6.0.7
Ibm Maximo Asset Management Essentials 7.5.0.2
Ibm Maximo Asset Management Essentials 7.5.0.3
Ibm Maximo Asset Management Essentials 7.5.0.4
Ibm Maximo Asset Management Essentials 7.5.0.5
Ibm Maximo Asset Management Essentials 7.6.0.0
Ibm Maximo Asset Management 7.5.0.0
Ibm Maximo Asset Management 7.5.0.1
Ibm Maximo Asset Management 7.5.0.2
Ibm Maximo Asset Management 7.5.0.3
Ibm Maximo Asset Management 7.6.0.2
Ibm Maximo Asset Management 7.6.0.1
Ibm Maximo Asset Management 7.6.0.0
Ibm Maximo Asset Management Essentials 7.5.0.0
Ibm Maximo Asset Management Essentials 7.5.0.7
3.5
CVSSv2
CVE-2017-1208
IBM Maximo Asset Management 7.1, 7.5, and 7.6 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. I...
Ibm Maximo Asset Management 7.5
Ibm Maximo Asset Management 7.1.1
Ibm Maximo Asset Management 7.1
Ibm Maximo Asset Management 7.6
2.1
CVSSv2
CVE-2017-1176
IBM Maximo Asset Management 7.1, 7.5, and 7.6 could allow a local user to obtain sensitive information due to inappropriate data retention of attachments. IBM X-Force ID: 123299.
Ibm Maximo Asset Management 7.1
Ibm Maximo Asset Management 7.1.1
Ibm Maximo Asset Management 7.5
Ibm Maximo Asset Management 7.6
7.5
CVSSv2
CVE-2017-1175
IBM Maximo Asset Management 7.1, 7.5, and 7.6 is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements, which could allow the malicious user to view, add, modify or delete information in the back-end database. IBM X-Force ID: 123297.
Ibm Maximo Asset Management 7.1.1
Ibm Maximo Asset Management 7.6
Ibm Maximo Asset Management 7.1
Ibm Maximo Asset Management 7.5
6.5
CVSSv2
CVE-2016-9984
IBM Maximo Asset Management 7.5 and 7.6 could allow a remote authenticated malicious user to execute arbitrary commands on the system as administrator. IBM X-Force ID: 120276.
Ibm Maximo Asset Management 7.6
Ibm Maximo Asset Management 7.5
4
CVSSv2
CVE-2016-8987
IBM Maximo Asset Management 7.1, 7.5, and 7.6 could allow an authenticated user to view incorrect item sets that they should not have access to view.
Ibm Maximo Asset Management 7.1
Ibm Maximo Asset Management 7.6
Ibm Maximo Asset Management 7.5
6.5
CVSSv2
CVE-2016-9977
IBM Maximo Asset Management 7.1, 7.5, and 7.6 could allow a remote malicious user to hijack a user's session, caused by the failure to invalidate an existing session identifier. An attacker could exploit this vulnerability to gain access to another user's session. IBM X...
Ibm Maximo Asset Management 7.5
Ibm Maximo Asset Management 7.6
Ibm Maximo Asset Management Essentials 7.1
Ibm Maximo Asset Management Essentials 7.5
Ibm Maximo Asset Management 7.1
5
CVSSv2
CVE-2017-1292
IBM Maximo Asset Management 7.5 and 7.6 generates error messages that could reveal sensitive information that could be used in further attacks against the system. IBM X-Force ID: 125153.
Ibm Maximo Asset Management Essentials 7.5
Ibm Maximo Asset Management 7.6
Ibm Maximo Asset Management 7.5
3.5
CVSSv2
CVE-2017-1291
IBM Maximo Asset Management 7.5 and 7.6 is vulnerable to HTTP response splitting attacks. A remote attacker could exploit this vulnerability using specially-crafted URL to cause the server to return a split response, once the URL is clicked. This would allow the malicious user to...
Ibm Maximo Asset Management 7.5
Ibm Maximo Asset Management 7.6
Ibm Maximo Asset Management Essentials 7.5
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4644
unprivileged
CVE-2024-3494
CVE-2024-22460
CVE-2024-26026
CVE-2024-23473
firewall
CVE-2024-28889
XML external entity
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »