Maximo Asset Configuration Manager IBM Maximo Asset Configuration Manager

Do you want an email whenever new security vulnerabilities are reported in IBM Maximo Asset Configuration Manager?

By the Year

In 2024 there have been 0 vulnerabilities in IBM Maximo Asset Configuration Manager . Maximo Asset Configuration Manager did not have any published security vulnerabilities last year.

Year Vulnerabilities Average Score
2024 0 0.00
2023 0 0.00
2022 0 0.00
2021 0 0.00
2020 4 6.28
2019 0 0.00
2018 0 0.00

It may take a day or so for new Maximo Asset Configuration Manager vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.

Recent IBM Maximo Asset Configuration Manager Security Vulnerabilities

IBM Maximo Asset Management 7.6.0 and 7.6.1 could allow a remote attacker to conduct phishing attacks, using a tabnabbing attack

CVE-2020-4409 8.2 - High - September 16, 2020

IBM Maximo Asset Management 7.6.0 and 7.6.1 could allow a remote attacker to conduct phishing attacks, using a tabnabbing attack. By persuading a victim to visit a specially-crafted Web site, a remote attacker could exploit this vulnerability to redirect a user to a malicious Web site that would appear to be trusted. This could allow the attacker to obtain highly sensitive information or conduct further attacks against the victim. IBM X-Force ID: 179537.

Open Redirect

IBM Maximo Asset Management 7.6 could

CVE-2019-4446 5.4 - Medium - April 17, 2020

IBM Maximo Asset Management 7.6 could allow an authenticated user perform actions they are not authorized to by modifying request parameters. IBM X-Force ID: 163490.

AuthZ

IBM Maximo Asset Management 7.6 is vulnerable to cross-site scripting

CVE-2019-4644 6.1 - Medium - April 17, 2020

IBM Maximo Asset Management 7.6 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 170880.

XSS

IBM Maximo Asset Management 7.6 is vulnerable to cross-site scripting

CVE-2019-4749 5.4 - Medium - April 17, 2020

IBM Maximo Asset Management 7.6 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 173308.

XSS

Stay on top of Security Vulnerabilities

Want an email whenever new vulnerabilities are published for IBM Tivoli Integration Composer or by IBM? Click the Watch button to subscribe.

IBM
Vendor

subscribe