Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm maximo asset management 7.6.1.0 vulnerabilities and exploits
(subscribe to this query)
578
VMScore
CVE-2020-4529
IBM Maximo Asset Management 7.6.0 and 7.6.1 is vulnerable to server side request forgery (SSRF). This may allow an authenticated malicious user to send unauthorized requests from the system, potentially leading to network enumeration or facilitating other attacks. IBM X-Force ID:...
Ibm Maximo Asset Management 7.6.0.0
Ibm Maximo Asset Management 7.6.1.0
187
VMScore
CVE-2020-4650
IBM Maximo Spatial Asset Management 7.6.0.3, 7.6.0.4, 7.6.0.5, and 7.6.1.0 allows web pages to be stored locally which can be read by another user on the system. IBM X-Force ID: 186023.
Ibm Maximo Spatial Asset Management 7.6.0.5
Ibm Maximo Spatial Asset Management 7.6.0.4
Ibm Maximo Spatial Asset Management 7.6.0.3
Ibm Maximo Spatial Asset Management 7.6.1.0
258
VMScore
CVE-2020-4651
IBM Maximo Spatial Asset Management 7.6.0.3, 7.6.0.4, 7.6.0.5, and 7.6.1.0 is vulnerable to cross-site request forgery which could allow an malicious user to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM X-Force ID: 186024.
Ibm Maximo Spatial Asset Management 7.6.0.5
Ibm Maximo Spatial Asset Management 7.6.0.4
Ibm Maximo Spatial Asset Management 7.6.0.3
Ibm Maximo Spatial Asset Management 7.6.1.0
356
VMScore
CVE-2018-1528
IBM Maximo Asset Management 7.6 up to and including 7.6.3 could allow an authenticated user to obtain sensitive information from the WhoAmI API. IBM X-Force ID: 142290.
Ibm Smartcloud Control Desk 7.6.0.1
Ibm Maximo For Aviation 7.6.0.0
Ibm Maximo For Aviation 7.6.1.0
Ibm Maximo For Aviation 7.6.2.0
Ibm Maximo For Aviation 7.6.2.1
Ibm Maximo For Aviation 7.6.3.0
Ibm Maximo For Transportation 7.6.1.0
Ibm Maximo For Transportation 7.6.2.0
Ibm Maximo For Transportation 7.6.2.1
Ibm Maximo For Transportation 7.6.2.2
Ibm Maximo For Transportation 7.6.2.3
Ibm Maximo For Transportation 7.6.2.4
Ibm Smartcloud Control Desk 7.6.0.0
Ibm Maximo For Life Sciences 7.6.0.0
Ibm Maximo For Utilities 7.6.0.0
Ibm Maximo For Nuclear Power 7.6.0.0
Ibm Maximo For Oil And Gas 7.6.0.0
Ibm Maximo Asset Management
801
VMScore
CVE-2018-1524
IBM Maximo Asset Management 7.6 up to and including 7.6.3 installs with a default administrator account that a remote intruder could use to gain administrator access to the system. This vulnerability is due to an incomplete fix for CVE-2015-4966. IBM X-Force ID: 142116.
Ibm Maximo For Oil And Gas 7.5.0.0
Ibm Smartcloud Control Desk 7.6.0.1
Ibm Maximo For Aviation 7.6.0.0
Ibm Maximo For Aviation 7.6.1.0
Ibm Maximo For Aviation 7.6.2.0
Ibm Maximo For Aviation 7.6.2.1
Ibm Maximo For Aviation 7.6.3.0
Ibm Maximo For Transportation 7.6.1.0
Ibm Maximo For Transportation 7.6.2.0
Ibm Maximo For Transportation 7.6.2.1
Ibm Maximo For Transportation 7.6.2.2
Ibm Maximo For Transportation 7.6.2.3
Ibm Maximo For Transportation 7.6.2.4
Ibm Smartcloud Control Desk 7.6.0.0
Ibm Maximo For Life Sciences 7.6.0.0
Ibm Maximo For Utilities 7.6.0.0
Ibm Maximo For Nuclear Power 7.6.0.0
Ibm Maximo For Oil And Gas 7.6.0.0
Ibm Maximo Asset Management
356
VMScore
CVE-2019-4745
IBM Maximo Asset Management 7.6.1.0 could allow a remote malicious user to disclose sensitive information to an authenticated user due to disclosing path information in the URL. IBM X-Force ID: 172883.
Ibm Maximo Asset Management 7.6.1.0
Ibm Maximo For Life Sciences 7.6
Ibm Maximo For Transportation 7.6.2.3
Ibm Maximo For Transportation 7.6.2.4
Ibm Maximo For Oil And Gas 7.6.1
Ibm Maximo For Aviation 7.6.8
Ibm Maximo For Aviation 7.6.7
Ibm Maximo For Aviation 7.6.6
Ibm Maximo For Utilities 7.6.0.2
Ibm Maximo For Utilities 7.6.0.1
Ibm Maximo For Transportation 7.6.2.5
Ibm Maximo For Nuclear Power 7.6.1
312
VMScore
CVE-2019-4429
IBM Maximo Asset Management 7.6.0 and 7.6.1 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM...
Ibm Maximo For Life Sciences 7.6
Ibm Smartcloud Control Desk -
Ibm Maximo Anywhere 7.6.0.0
Ibm Maximo Anywhere 7.6.1.0
Ibm Maximo For Transportation 7.6.2.3
Ibm Maximo For Transportation 7.6.2.4
Ibm Control Desk 7.6.1
Ibm Maximo For Oil And Gas 7.6.1
Ibm Tivoli Integration Composer 7.6.0.2
Ibm Tivoli Integration Composer 7.6.0.1
Ibm Control Desk 7.6.1.1
Ibm Maximo For Aviation 7.6.8
Ibm Maximo For Aviation 7.6.7
Ibm Maximo For Aviation 7.6.6
Ibm Maximo For Utilities 7.6.0.2
Ibm Maximo For Utilities 7.6.0.1
Ibm Maximo For Transportation 7.6.2.5
Ibm Maximo For Nuclear Power 7.6.1
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3080
log injection
CVE-2024-6041
CVE-2024-37661
XML external entity
CVE-2024-0845
privilege escalation
CVE-2023-37057
CVE-2024-27801
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started