Directory Traversal Vulnerability in IBM Maximo MXAPIASSET API
CVE-2024-45652
6.5MEDIUM
What is CVE-2024-45652?
The IBM Maximo MXAPIASSET API version 7.6.1.3 is susceptible to directory traversal, enabling remote attackers to exploit the system by crafting malicious URL requests. By utilizing 'dot dot' sequences (/../), an attacker may gain access to arbitrary files on the server. This vulnerability poses a significant risk as it could allow unauthorized users to read sensitive data, thus compromising the integrity and confidentiality of the system.
Affected Version(s)
Maximo Asset Management 7.6.1.3