Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm maximo asset management essentials 7.6 vulnerabilities and exploits
(subscribe to this query)
6.8
CVSSv2
CVE-2016-9976
IBM Maximo Asset Management 7.1, 7.5, and 7.6 could allow a remote malicious user to include arbitrary files. A remote attacker could send a specially-crafted URL request, which could allow the malicious user to execute arbitrary code on the vulnerable server. IBM X-Force ID: 120...
Ibm Maximo Asset Management 7.5
Ibm Maximo Asset Management Essentials 7.1
Ibm Maximo Asset Management Essentials 7.5
Ibm Maximo Asset Management 7.1
Ibm Maximo Asset Management 7.6
6.5
CVSSv2
CVE-2016-9977
IBM Maximo Asset Management 7.1, 7.5, and 7.6 could allow a remote malicious user to hijack a user's session, caused by the failure to invalidate an existing session identifier. An attacker could exploit this vulnerability to gain access to another user's session. IBM X...
Ibm Maximo Asset Management 7.5
Ibm Maximo Asset Management 7.6
Ibm Maximo Asset Management Essentials 7.1
Ibm Maximo Asset Management Essentials 7.5
Ibm Maximo Asset Management 7.1
4
CVSSv2
CVE-2017-1357
IBM Maximo Asset Management 7.5 and 7.6 could allow an authenticated user to manipulate work orders to forge emails which could be used to conduct further advanced attacks. IBM X-Force ID: 126684.
Ibm Maximo Asset Management Essentials 7.5.0.10
Ibm Maximo Asset Management Essentials 7.6.0.7
Ibm Maximo Asset Management Essentials 7.6.0.6
Ibm Maximo Asset Management Essentials 7.6.0.5
Ibm Maximo Asset Management 7.5.0.8
Ibm Maximo Asset Management 7.5.0.9
Ibm Maximo Asset Management 7.5.0.10
Ibm Maximo Asset Management 7.6.0.7
Ibm Maximo Asset Management Essentials 7.5.0.2
Ibm Maximo Asset Management Essentials 7.5.0.3
Ibm Maximo Asset Management Essentials 7.5.0.4
Ibm Maximo Asset Management Essentials 7.5.0.5
Ibm Maximo Asset Management Essentials 7.6.0.0
Ibm Maximo Asset Management 7.5.0.0
Ibm Maximo Asset Management 7.5.0.1
Ibm Maximo Asset Management 7.5.0.2
Ibm Maximo Asset Management 7.5.0.3
Ibm Maximo Asset Management 7.6.0.2
Ibm Maximo Asset Management 7.6.0.1
Ibm Maximo Asset Management 7.6.0.0
Ibm Maximo Asset Management Essentials 7.5.0.0
Ibm Maximo Asset Management Essentials 7.5.0.7
5.8
CVSSv2
CVE-2017-1558
IBM Maximo Asset Management 7.5 and 7.6 could allow a remote malicious user to conduct phishing attacks, using an open redirect attack. By persuading a victim to visit a specially-crafted Web site, a remote attacker could exploit this vulnerability to spoof the URL displayed to r...
Ibm Maximo Asset Management Essentials 7.5
Ibm Maximo Asset Management 7.5
Ibm Maximo Asset Management 7.6
3.5
CVSSv2
CVE-2017-1291
IBM Maximo Asset Management 7.5 and 7.6 is vulnerable to HTTP response splitting attacks. A remote attacker could exploit this vulnerability using specially-crafted URL to cause the server to return a split response, once the URL is clicked. This would allow the malicious user to...
Ibm Maximo Asset Management 7.5
Ibm Maximo Asset Management 7.6
Ibm Maximo Asset Management Essentials 7.5
5
CVSSv2
CVE-2017-1292
IBM Maximo Asset Management 7.5 and 7.6 generates error messages that could reveal sensitive information that could be used in further attacks against the system. IBM X-Force ID: 125153.
Ibm Maximo Asset Management Essentials 7.5
Ibm Maximo Asset Management 7.6
Ibm Maximo Asset Management 7.5
4
CVSSv2
CVE-2015-5051
IBM Maximo Asset Management 7.5 prior to 7.5.0.8 IF6 and 7.6 prior to 7.6.0.2 IF1 and Maximo Asset Management 7.5 prior to 7.5.0.8 IF6, 7.5.1, and 7.6 prior to 7.6.0.2 IF1 for SmartCloud Control Desk allow remote authenticated users to bypass intended access restrictions on query...
Ibm Smartcloud Control Desk 7.6
Ibm Smartcloud Control Desk 7.5
Ibm Maximo For Transportation 7.5
Ibm Maximo For Nuclear Power 7.5
Ibm Maximo For Government 7.5
Ibm Maximo Asset Management Essentials 7.5
Ibm Maximo For Utilities 7.5
Ibm Maximo For Life Sciences 7.6
Ibm Maximo Asset Management 7.6
Ibm Maximo For Oil And Gas 7.5
Ibm Maximo For Life Sciences 7.5
Ibm Maximo Asset Management Essentials 7.6
Ibm Maximo Asset Management 7.5
4.9
CVSSv2
CVE-2015-7487
IBM Maximo Asset Management 7.1 up to and including 7.1.1.13, 7.5.0 prior to 7.5.0.9 IFIX002, and 7.6.0 prior to 7.6.0.3 IFIX001; Maximo Asset Management 7.5.0 prior to 7.5.0.9 IFIX002, 7.5.1, and 7.6.0 prior to 7.6.0.3 IFIX001 for SmartCloud Control Desk; and Maximo Asset Manage...
Ibm Maximo For Transportation 7.1
Ibm Maximo For Life Sciences 7.1
Ibm Change And Configuration Management Database 7.2
Ibm Tivoli Service Request Manager 7.2
Ibm Maximo Asset Management Essentials 7.5.0.7
Ibm Maximo Asset Management Essentials 7.5.0.5
Ibm Maximo Asset Management 7.6.0.2
Ibm Maximo Asset Management 7.6.0.0
Ibm Maximo Asset Management 7.5.0.5
Ibm Maximo Asset Management 7.5.0.3
Ibm Maximo Asset Management 7.5.0.1
Ibm Maximo Asset Management 7.1.1.7
Ibm Maximo Asset Management 7.1.1.5
Ibm Maximo Asset Management 7.1.1
Ibm Maximo Asset Management 7.1
Ibm Maximo For Oil And Gas 7.5
Ibm Maximo For Oil And Gas 7.1
Ibm Maximo For Utilities 7.5
Ibm Maximo For Utilities 7.1
Ibm Maximo Asset Management Essentials 7.5.0.3
Ibm Maximo Asset Management Essentials 7.5.0.2
Ibm Maximo Asset Management Essentials 7.5.0.1
6.5
CVSSv2
CVE-2017-1499
IBM Maximo Asset Management 7.5 and 7.6 could allow a remote malicious user to include arbitrary files, which could allow the malicious user to execute arbitrary code on the vulnerable Web server. IBM X-Force ID: 129106.
Ibm Maximo Asset Management 7.6.0.0
Ibm Maximo Asset Management 7.5.0.0
Ibm Maximo Asset Management Essentials 7.5.0.0
6.5
CVSSv2
CVE-2018-1414
IBM Maximo Asset Management 7.5 and 7.6 is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements, which could allow the malicious user to view, add, modify or delete information in the back-end database. IBM X-Force ID: 138820.
Ibm Maximo Asset Management 7.6.0.0
Ibm Maximo Asset Management 7.5.0.0
Ibm Maximo Asset Management Essentials 7.5.0.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »