VYPR

Maximo Application Suite

by IBM

CVEs (24)

  • CVE-2023-32334Jun 5, 2023
    risk 0.00cvss epss 0.01

    IBM Maximo Asset Management 7.6.1.2, 7.6.1.3 and IBM Maximo Application Suite 8.8.0 stores sensitive information in URL parameters. This may lead to information disclosure if unauthorized parties have access to the URLs via server logs, referrer header or browser history. IBM…

  • CVE-2023-27861Jun 5, 2023
    risk 0.00cvss epss 0.00

    IBM Maximo Application Suite - Manage Component 8.8.0 and 8.9.0 transmits sensitive information in cleartext that could be intercepted by an attacker using man in the middle techniques. IBM X-Force ID: 249208.

  • CVE-2022-35645Mar 2, 2023
    risk 0.00cvss epss 0.00

    IBM Maximo Asset Management 7.6.1.1, 7.6.1.2, 7.6.1.3 and IBM Maximo Application Suite 8.8 and 8.9 is vulnerable to stored cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially…

  • CVE-2022-43923Feb 24, 2023
    risk 0.00cvss epss 0.00

    IBM Maximo Application Suite 8.8.0 and 8.9.0 stores potentially sensitive information that could be read by a local user. IBM X-Force ID: 241584.

Page 2 of 2