VYPR
Unrated severityNVD Advisory· Published Jan 19, 2025· Updated Jan 21, 2025

IBM Maximo Asset Management directory traversal

CVE-2024-45652

Description

IBM Maximo MXAPIASSET API 7.6.1.3 could allow a remote attacker to traverse directories on the system. An attacker could send a specially crafted URL request containing "dot dot" sequences (/../) to view arbitrary files on the system.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.