CVE-2013-3972Sensitive Information Exposure in IBM Maximo Asset Management

CWE-200Sensitive Information Exposure3 documents3 sources
Severity
4.0MEDIUMNVD
EPSS
0.2%
top 57.68%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
IBM Maximo Asset Management
Timeline
PublishedOct 1
Latest updateMay 17

Description

IBM Maximo Asset Management 7.1 before 7.1.1.12 and 7.5 before 7.5.0.5 allows remote authenticated users to obtain sensitive information via unspecified vectors.

CVSS vector

AV:N/AC:L/C:P/I:N/A:NExploitability: 8.0 | Impact: 2.9

Affected Packages1 packages

NVDibm/maximo_asset_management16 versions+15

🔴Vulnerability Details

2
GHSA
GHSA-9fwm-6w9f-rw48: IBM Maximo Asset Management 72022-05-17
CVEList
CVE-2013-3972: IBM Maximo Asset Management 72013-10-01
CVE-2013-3972 — Sensitive Information Exposure in IBM | cvebase