CVE-2018-1524
published 2018-08-03CVE-2018-1524: IBM Maximo Asset Management 7.6 through 7.6.3 installs with a default administrator account that a remote intruder could use to gain administrator access to…
high8.8CVSS 3.0
AVNACLPRLUINSUCHIHAH
IBM Maximo Asset Management 7.6 through 7.6.3 installs with a default administrator account that a remote intruder could use to gain administrator access to the system. This vulnerability is due to an incomplete fix for CVE-2015-4966. IBM X-Force ID: 142116.
Affected
19 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| ibm | maximo_asset_management | 7.6.0.0 – 7.6.3.0 | — |
| ibm | maximo_for_aviation | — | — |
| ibm | maximo_for_aviation | — | — |
| ibm | maximo_for_aviation | — | — |
| ibm | maximo_for_aviation | — | — |
| ibm | maximo_for_aviation | — | — |
| ibm | maximo_for_life_sciences | — | — |
| ibm | maximo_for_nuclear_power | — | — |
| ibm | maximo_for_oil_and_gas | — | — |
| ibm | maximo_for_oil_and_gas | — | — |
| ibm | maximo_for_transportation | — | — |
| ibm | maximo_for_transportation | — | — |
| ibm | maximo_for_transportation | — | — |
| ibm | maximo_for_transportation | — | — |
| ibm | maximo_for_transportation | — | — |
| ibm | maximo_for_transportation | — | — |
| ibm | maximo_for_utilities | — | — |
| ibm | smartcloud_control_desk | — | — |
| ibm | smartcloud_control_desk | — | — |