IBM Maximo Anywhere
By the Year
In 2024 there have been 0 vulnerabilities in IBM Maximo Anywhere . Maximo Anywhere did not have any published security vulnerabilities last year.
Year | Vulnerabilities | Average Score |
---|---|---|
2024 | 0 | 0.00 |
2023 | 0 | 0.00 |
2022 | 3 | 4.50 |
2021 | 0 | 0.00 |
2020 | 4 | 4.10 |
2019 | 1 | 2.40 |
2018 | 0 | 0.00 |
It may take a day or so for new Maximo Anywhere vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.
Recent IBM Maximo Anywhere Security Vulnerabilities
IBM Maximo Anywhere 7.6.4.0 applications could allow obfuscation of the application source code
CVE-2019-4352
2.4 - Low
- February 16, 2022
IBM Maximo Anywhere 7.6.4.0 applications could allow obfuscation of the application source code. IBM X-Force ID: 161494.
IBM Maximo Anywhere 7.6.4.0 applications could disclose sensitive information to a user with physical access to the device
CVE-2019-4351
4.6 - Medium
- February 16, 2022
IBM Maximo Anywhere 7.6.4.0 applications could disclose sensitive information to a user with physical access to the device. IBM X-Force ID: 161493.
IBM Maximo Anywhere 7.6.4.0 could allow an attacker to reverse engineer the application due to the lack of binary protection precautions
CVE-2019-4291
6.5 - Medium
- February 16, 2022
IBM Maximo Anywhere 7.6.4.0 could allow an attacker to reverse engineer the application due to the lack of binary protection precautions. IBM X-Force ID: 160697.
Inadequate Encryption Strength
IBM Maximo Anywhere 7.6.2.0, 7.6.2.1, 7.6.3.0, and 7.6.3.1 does not have device jailbreak detection
CVE-2019-4266
2.4 - Low
- May 06, 2020
IBM Maximo Anywhere 7.6.2.0, 7.6.2.1, 7.6.3.0, and 7.6.3.1 does not have device jailbreak detection which could result in an attacker gaining sensitive information about the device. IBM X-Force ID: 160199.
Improper Privilege Management
IBM Maximo Anywhere 7.6.2.0
CVE-2019-4286
4.3 - Medium
- April 29, 2020
IBM Maximo Anywhere 7.6.2.0, 7.6.2.1, 7.6.3.0, and 7.6.3.1 could disclose highly senstiive user information to an authenticated user with physical access to the device. IBM X-Force ID: 160514.
Information Disclosure
IBM Maximo Anywhere 7.6.2.0
CVE-2019-4288
4.3 - Medium
- April 29, 2020
IBM Maximo Anywhere 7.6.2.0, 7.6.2.1, 7.6.3.0, and 7.6.3.1 could disclose highly senstiive user information to an authenticated user with physical access to the device. IBM X-Force ID: 160631.
Information Disclosure
IBM Maximo Asset Management 7.6.0 and 7.6.1 is vulnerable to cross-site scripting
CVE-2019-4429
5.4 - Medium
- February 19, 2020
IBM Maximo Asset Management 7.6.0 and 7.6.1 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 162886.
XSS
IBM Maximo Anywhere 7.6.0, 7.6.1, 7.6.2, and 7.6.3 does not have device root detection
CVE-2019-4265
2.4 - Low
- October 10, 2019
IBM Maximo Anywhere 7.6.0, 7.6.1, 7.6.2, and 7.6.3 does not have device root detection which could result in an attacker gaining sensitive information about the device. IBM X-Force ID: 160198.
Insecure Storage of Sensitive Information
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for IBM Maximo Anywhere or by IBM? Click the Watch button to subscribe.