IBM Maximo Asset Management Vulnerability: Web Pages Stored Locally Can Be Accessed by Other Users
CVE-2024-22333
4MEDIUM
Key Information
- Vendor
- IBM
- Status
- Maximo Application Suite
- Maximo Asset Management
- Vendor
- Published:
- 13 June 2024
Summary
IBM Maximo Asset Management 7.6.1.3 and IBM Maximo Application Suite 8.10 and 8.11 allows web pages to be stored locally which can be read by another user on the system. IBM X-Force ID: 279973.
Affected Version(s)
Maximo Application Suite = 8.10, 8.11
Maximo Asset Management = 7.6.1.3
CVSS V3.1
Score:
4
Severity:
MEDIUM
Confidentiality:
LOW
Integrity:
NONE
Availability:
NONE
Attack Complexity:
LOW
Privileges Required:
NONE
User Interaction:
NONE
Scope:
UNCHANGED
Timeline
Vulnerability published.
Vulnerability Reserved.
Collectors
NVD DatabaseMitre Database