Asset Performance Management Classic
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in Asset Performance Management Classic.
By the Year
In 2026 there have been 0 vulnerabilities in Asset Performance Management Classic. Asset Performance Management Classic did not have any published security vulnerabilities last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2026 | 0 | 0.00 |
| 2025 | 0 | 0.00 |
| 2024 | 0 | 0.00 |
| 2023 | 0 | 0.00 |
| 2022 | 0 | 0.00 |
| 2021 | 0 | 0.00 |
| 2020 | 2 | 0.00 |
It may take a day or so for new Asset Performance Management Classic vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Asset Performance Management Classic Security Vulnerabilities
GE Digital APM Classic, Versions 4.4 and prior
CVE-2020-16240
- September 23, 2020
GE Digital APM Classic, Versions 4.4 and prior. An insecure direct object reference (IDOR) vulnerability allows user account data to be downloaded in JavaScript object notation (JSON) format by users who should not have access to such functionality. An attacker can download sensitive data related to user accounts without having the proper privileges.
Insecure Direct Object Reference / IDOR
GE Digital APM Classic, Versions 4.4 and prior
CVE-2020-16244
- September 23, 2020
GE Digital APM Classic, Versions 4.4 and prior. Salt is not used for hash calculation of passwords, making it possible to decrypt passwords. This design flaw, along with the IDOR vulnerability, puts the entire platform at high risk because an authenticated user can retrieve all user account data and then retrieve the actual passwords.
Use of a One-Way Hash without a Salt
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Asset Performance Management Classic or by GE? Click the Watch button to subscribe.
