CVE-2017-1292

CWE-200Information Exposure3 documents3 sources
Severity
5.3MEDIUM
EPSS
0.2%
top 59.72%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
IBM Maximo Asset ManagementIBM Maximo Asset Management Essentials
Timeline
PublishedMay 26
Latest updateMay 17

Description

IBM Maximo Asset Management 7.5 and 7.6 generates error messages that could reveal sensitive information that could be used in further attacks against the system. IBM X-Force ID: 125153.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:NExploitability: 3.9 | Impact: 1.4

Affected Packages3 packages

CVEListV5ibm/maximo_asset_management7.5, 7.6+1

Patches

Patch: www.ibm.comPatch: www.ibm.com

🔴Vulnerability Details

2
GHSA
GHSA-j6j6-rqgq-38xw: IBM Maximo Asset Management 72022-05-17
CVEList
CVE-2017-1292: IBM Maximo Asset Management 72017-05-26
CVE-2017-1292 (MEDIUM CVSS 5.3) | IBM Maximo Asset Management 7.5 and | cvebase.io