CVE-2019-4429 vulnerability in IBM Products
Published on February 19, 2020

IBM Maximo Asset Management 7.6.0 and 7.6.1 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 162886.

NVD

Products Associated with CVE-2019-4429

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2019-4429 are published in these products:

IBM Control Desk

IBM Maximo Anywhere

IBM Maximo For Aviation

IBM Maximo For Life Sciences

IBM Maximo For Nuclear Power

IBM Maximo For Oil And Gas

IBM Maximo For Transportation

IBM Maximo For Utilities

IBM Smartcloud Control Desk

IBM Tivoli Integration Composer

Affected Versions

IBM Maximo Asset Management:

Version 7.6.0 is affected.
Version 7.6.1 is affected.

Exploit Probability

EPSS

0.24%

Percentile

46.76%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2019-4429 vulnerability in IBM ProductsPublished on February 19, 2020

Products Associated with CVE-2019-4429

Affected Versions

Exploit Probability

CVE-2019-4429 vulnerability in IBM Products
Published on February 19, 2020