IBM Maximo Asset Management 7.6.1.1-7.6.1.2 Info Disclosure via Error Message
CVE-2021-38924 Published on September 14, 2022

IBM Maximo Asset Management 7.6.1.1 and 7.6.1.2 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system. IBM X-Force ID: 210163.

NVD

Products Associated with CVE-2021-38924

stack.watch emails you whenever new vulnerabilities are published in IBM Maximo Asset Management or IBM Maximo Application Suite. Just hit a watch button to start following.

IBM Maximo Asset Management

IBM Maximo Application Suite

Affected Versions

IBM Maximo Asset Management:

Version 7.6.1.1 is affected.
Version 7.6.1.2 is affected.

Exploit Probability

EPSS

0.26%

Percentile

49.79%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

IBM Maximo Asset Management 7.6.1.1-7.6.1.2 Info Disclosure via Error MessageCVE-2021-38924 Published on September 14, 2022

Products Associated with CVE-2021-38924

Affected Versions

Exploit Probability

IBM Maximo Asset Management 7.6.1.1-7.6.1.2 Info Disclosure via Error Message
CVE-2021-38924 Published on September 14, 2022