CVE-2024-22333

LOW

IBM Maximo Asset Management <7.6.1.3 - Info Disclosure

Title source: llm

Description

IBM Maximo Asset Management 7.6.1.3 and IBM Maximo Application Suite 8.10 and 8.11 allows web pages to be stored locally which can be read by another user on the system. IBM X-Force ID: 279973.

References (3)

[Vendor Advisory] https://www.ibm.com/support/pages/node/7157256

[Vendor Advisory] https://www.ibm.com/support/pages/node/7157257

[VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/279973

Scores

CVSS v3 3.3

EPSS 0.0005

EPSS Percentile 14.7%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-525 CWE-668

Status published

Products (3)

ibm/maximo_application_suite 8.10

ibm/maximo_application_suite 8.11

ibm/maximo_asset_management 7.6.1.3

Published Jun 13, 2024

Tracked Since Feb 18, 2026