Binary Protection Flaw in IBM Maximo Anywhere
CVE-2019-4291

6.5MEDIUM

Key Information:

Vendor: IBM
Status: Maximo Anywhere
Vendor: CVE Published:; 16 February 2022

Summary

IBM Maximo Anywhere 7.6.4.0 contains a vulnerability that may enable attackers to reverse engineer the application. This weakness arises from insufficient binary protection measures, potentially exposing sensitive data and logic to malicious actors. Organizations using this product should assess their security posture and consider mitigation strategies to safeguard against unauthorized access.

Affected Version(s)

Maximo Anywhere 7.6.4.0

References

https://www.ibm.com/support/pages/node/6556834

x_refsource_CONFIRM

https://exchange.xforce.ibmcloud.com/vulnerabilities/160697

vdb-entryx_refsource_XF

CVSS V3.1

Score:

6.5

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Feb 16, 2022
Vulnerability Reserved
Jan 3, 2019