Information Disclosure in IBM Maximo Asset Management
CVE-2015-4965
Currently unrated
Key Information:
- Vendor
- IBM
- Vendor
- CVE Published:
- 6 October 2015
Summary
This vulnerability allows remote authenticated users to access sensitive information by reading backup or debug application files within IBM Maximo Asset Management software. The affected versions include IBM Maximo Asset Management 7.1 through 7.1.1.13, and 7.5.0 and 7.6.0 prior to specific IFIX updates, posing a risk of data leakage if proper security measures are not enforced.
References
Timeline
Vulnerability published
Vulnerability Reserved