CVE-2019-4288

4.3MEDIUM

Key Information:

Vendor: IBM
Status: Maximo Anywhere
Vendor: CVE Published:; 29 April 2020

Summary

IBM Maximo Anywhere 7.6.2.0, 7.6.2.1, 7.6.3.0, and 7.6.3.1 could disclose highly senstiive user information to an authenticated user with physical access to the device. IBM X-Force ID: 160631.

Affected Version(s)

Maximo Anywhere 7.6.2.0

Maximo Anywhere 7.6.2.1

Maximo Anywhere 7.6.3.0

References

https://www.ibm.com/support/pages/node/6202708

x_refsource_CONFIRM

https://exchange.xforce.ibmcloud.com/vulnerabilities/160631

vdb-entryx_refsource_XF

CVSS V3.1

Score:

4.3

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Physical

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Apr 29, 2020
Vulnerability Reserved
Jan 3, 2019