IBM Maximo Asset Configuration Manager
By the Year
In 2024 there have been 0 vulnerabilities in IBM Maximo Asset Configuration Manager . Maximo Asset Configuration Manager did not have any published security vulnerabilities last year.
Year | Vulnerabilities | Average Score |
---|---|---|
2024 | 0 | 0.00 |
2023 | 0 | 0.00 |
2022 | 0 | 0.00 |
2021 | 0 | 0.00 |
2020 | 4 | 6.28 |
2019 | 0 | 0.00 |
2018 | 0 | 0.00 |
It may take a day or so for new Maximo Asset Configuration Manager vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.
Recent IBM Maximo Asset Configuration Manager Security Vulnerabilities
IBM Maximo Asset Management 7.6.0 and 7.6.1 could allow a remote attacker to conduct phishing attacks, using a tabnabbing attack
CVE-2020-4409
8.2 - High
- September 16, 2020
IBM Maximo Asset Management 7.6.0 and 7.6.1 could allow a remote attacker to conduct phishing attacks, using a tabnabbing attack. By persuading a victim to visit a specially-crafted Web site, a remote attacker could exploit this vulnerability to redirect a user to a malicious Web site that would appear to be trusted. This could allow the attacker to obtain highly sensitive information or conduct further attacks against the victim. IBM X-Force ID: 179537.
Open Redirect
IBM Maximo Asset Management 7.6 could
CVE-2019-4446
5.4 - Medium
- April 17, 2020
IBM Maximo Asset Management 7.6 could allow an authenticated user perform actions they are not authorized to by modifying request parameters. IBM X-Force ID: 163490.
AuthZ
IBM Maximo Asset Management 7.6 is vulnerable to cross-site scripting
CVE-2019-4644
6.1 - Medium
- April 17, 2020
IBM Maximo Asset Management 7.6 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 170880.
XSS
IBM Maximo Asset Management 7.6 is vulnerable to cross-site scripting
CVE-2019-4749
5.4 - Medium
- April 17, 2020
IBM Maximo Asset Management 7.6 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 173308.
XSS
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for IBM Tivoli Integration Composer or by IBM? Click the Watch button to subscribe.