IBM » Maximo For Oil And Gas : Security Vulnerabilities, CVEs, (Gain Privilege) CVSS score >= 6
IBM Tivoli IT Asset Management for IT, Tivoli Service Request Manager, and Change and Configuration Management Database 7.1 through 7.1.1.8 and 7.2 and Maximo Asset Management and Maximo Industry Solutions 7.1 through 7.1.1.8, 7.5 before 7.5.0.7 IFIX003, and 7.6 before 7.6.0.0 IFIX002 allow remote authenticated users to execute arbitrary code via unspecified vectors.
Max CVSS
8.8
EPSS Score
1.35%
Published
2017-04-24
Updated
2017-04-27
A Privilege Escalation Vulnerability exists in IBM Maximo Asset Management 7.5, 7.1, and 6.2, when WebSeal with Basic Authentication is used, due to a failure to invalidate the authentication session, which could let a malicious user obtain unauthorized access.
Max CVSS
9.8
EPSS Score
0.39%
Published
2020-02-18
Updated
2020-02-21
2 vulnerabilities found