CVE-2024-22333

LOW

IBM Maximo Asset Management <7.6.1.3 - Info Disclosure

Title source: llm

Description

IBM Maximo Asset Management 7.6.1.3 and IBM Maximo Application Suite 8.10 and 8.11 allows web pages to be stored locally which can be read by another user on the system. IBM X-Force ID: 279973.

References (3)

[VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/279973

[Vendor Advisory] https://www.ibm.com/support/pages/node/7157256

[Vendor Advisory] https://www.ibm.com/support/pages/node/7157257

Scores

CVSS v3 3.3

EPSS 0.0005

EPSS Percentile 14.7%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Classification

CWE

CWE-525 CWE-668

Status published

Affected Products (3)

ibm/maximo_application_suite

ibm/maximo_asset_management

Timeline

Published Jun 13, 2024

Tracked Since Feb 18, 2026