Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm maximo asset management vulnerabilities and exploits
(subscribe to this query)
383
VMScore
CVE-2011-4819
Multiple cross-site scripting (XSS) vulnerabilities in IBM Maximo Asset Management and Asset Management Essentials 6.2, 7.1, and 7.5 allow remote malicious users to inject arbitrary web script or HTML via the uisesionid parameter to (1) maximo.jsp or (2) the default URI under ui/...
Ibm Maximo Asset Management Essentials 7.5
Ibm Maximo Asset Management 7.5
Ibm Maximo Asset Management Essentials 6.2
Ibm Maximo Asset Management Essentials 7.1
Ibm Maximo Asset Management 7.1
Ibm Maximo Asset Management 6.2
383
VMScore
CVE-2011-4818
Open redirect vulnerability in IBM Maximo Asset Management and Asset Management Essentials 6.2, 7.1, and 7.5 allows remote authenticated users to redirect users to arbitrary web sites and conduct phishing attacks via the uisessionid parameter to an unspecified component.
Ibm Maximo Asset Management Essentials 7.1
Ibm Maximo Asset Management 7.5
Ibm Maximo Asset Management 6.2
Ibm Maximo Asset Management Essentials 6.2
Ibm Maximo Asset Management Essentials 7.5
Ibm Maximo Asset Management 7.1
383
VMScore
CVE-2011-1395
Cross-site scripting (XSS) vulnerability in imicon.jsp in IBM Maximo Asset Management and Asset Management Essentials 6.2, 7.1, and 7.5 allows remote malicious users to inject arbitrary web script or HTML via the controlid parameter.
Ibm Maximo Asset Management Essentials 7.5
Ibm Maximo Asset Management 7.1
Ibm Maximo Asset Management Essentials 7.1
Ibm Maximo Asset Management 7.5
Ibm Maximo Asset Management 6.2
Ibm Maximo Asset Management Essentials 6.2
383
VMScore
CVE-2011-1396
Cross-site scripting (XSS) vulnerability in IBM Maximo Asset Management and Asset Management Essentials 6.2, 7.1, and 7.5 allows remote malicious users to inject arbitrary web script or HTML via the reportType parameter to an unspecified component.
Ibm Maximo Asset Management 7.1
Ibm Maximo Asset Management 6.2
Ibm Maximo Asset Management Essentials 7.5
Ibm Maximo Asset Management 7.5
Ibm Maximo Asset Management Essentials 6.2
Ibm Maximo Asset Management Essentials 7.1
534
VMScore
CVE-2014-0849
IBM Maximo Asset Management 7.x prior to 7.5.0.3 IFIX027 and SmartCloud Control Desk 7.x prior to 7.5.0.3 and 7.5.1.x prior to 7.5.1.2 allow remote authenticated users to gain privileges by leveraging membership in two security groups.
Ibm Maximo Asset Management 7.1.2
Ibm Maximo Asset Management 7.1.1.11
Ibm Maximo Asset Management 7.1.1.12
Ibm Maximo Asset Management 7.1.1.7
Ibm Maximo Asset Management 7.1.1.10
Ibm Maximo Asset Management 7.1.1.1
Ibm Maximo Asset Management 7.1.1.2
Ibm Maximo Asset Management 7.1
Ibm Maximo Asset Management 7.1.1
Ibm Maximo Asset Management 7.1.1.8
Ibm Maximo Asset Management 7.1.1.9
Ibm Maximo Asset Management 7.1.1.5
Ibm Maximo Asset Management 7.1.1.6
Ibm Smartcloud Control Desk 7.5.0.1
Ibm Smartcloud Control Desk 7.5.0.2
Ibm Smartcloud Control Desk 7.5.1.1
Ibm Smartcloud Control Desk 7.0
Ibm Smartcloud Control Desk 7.5.0.3
Ibm Smartcloud Control Desk 7.5.1.0
Ibm Smartcloud Control Desk 7.5
Ibm Smartcloud Control Desk 7.5.0.0
Ibm Maximo Asset Management 7.5.0.1
578
VMScore
CVE-2016-9977
IBM Maximo Asset Management 7.1, 7.5, and 7.6 could allow a remote malicious user to hijack a user's session, caused by the failure to invalidate an existing session identifier. An attacker could exploit this vulnerability to gain access to another user's session. IBM X...
Ibm Maximo Asset Management 7.5
Ibm Maximo Asset Management 7.6
Ibm Maximo Asset Management Essentials 7.1
Ibm Maximo Asset Management Essentials 7.5
Ibm Maximo Asset Management 7.1
605
VMScore
CVE-2016-9976
IBM Maximo Asset Management 7.1, 7.5, and 7.6 could allow a remote malicious user to include arbitrary files. A remote attacker could send a specially-crafted URL request, which could allow the malicious user to execute arbitrary code on the vulnerable server. IBM X-Force ID: 120...
Ibm Maximo Asset Management 7.5
Ibm Maximo Asset Management Essentials 7.1
Ibm Maximo Asset Management Essentials 7.5
Ibm Maximo Asset Management 7.1
Ibm Maximo Asset Management 7.6
187
VMScore
CVE-2017-1176
IBM Maximo Asset Management 7.1, 7.5, and 7.6 could allow a local user to obtain sensitive information due to inappropriate data retention of attachments. IBM X-Force ID: 123299.
Ibm Maximo Asset Management 7.1
Ibm Maximo Asset Management 7.1.1
Ibm Maximo Asset Management 7.5
Ibm Maximo Asset Management 7.6
668
VMScore
CVE-2017-1175
IBM Maximo Asset Management 7.1, 7.5, and 7.6 is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements, which could allow the malicious user to view, add, modify or delete information in the back-end database. IBM X-Force ID: 123297.
Ibm Maximo Asset Management 7.1.1
Ibm Maximo Asset Management 7.6
Ibm Maximo Asset Management 7.1
Ibm Maximo Asset Management 7.5
312
VMScore
CVE-2018-1415
IBM Maximo Asset Management 7.6 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID:...
Ibm Maximo Asset Management 7.6.0.5
Ibm Maximo Asset Management 7.6.0.6
Ibm Maximo Asset Management 7.6.0.7
Ibm Maximo Asset Management 7.6.0.8
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-52710
arbitrary
CVE-2024-5272
CVE-2024-2961
brute force
remote
CVE-2024-32944
CVE-2024-36241
CVE-2024-5274
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »