Medium severity5.6NVD Advisory· Published Apr 26, 2017· Updated Jun 17, 2026
CVE-2016-8924
CVE-2016-8924
Description
IBM Maximo Asset Management 7.1, 7.5 and 7.6 could allow a remote attacker to hijack a user's session, caused by the failure to invalidate an existing session identifier. An attacker could exploit this vulnerability to gain access to another user's session. IBM X-Force ID: 118537.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
5cpe:2.3:a:ibm:maximo_asset_management:7.1:*:*:*:*:*:*:*+ 3 more
- cpe:2.3:a:ibm:maximo_asset_management:7.1:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:maximo_asset_management:7.5:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:maximo_asset_management:7.6:*:*:*:*:*:*:*
- (no CPE)
- IBM Corporation/Maximo Asset Managementv5Range: 7.1, 7.1.1, 7.5, 7.6
Patches
Vulnerability mechanics
References
2- www.ibm.com/support/docview.wssnvdVendor Advisory
- www.securityfocus.com/bid/98023nvdThird Party AdvisoryVDB Entry
News mentions
0No linked articles in our index yet.