CVE-2018-1528: IBM Maximo Asset Management 7.6 through 7.6.3 could allow an authenticated user to obtain sensitive information from the WhoAmI API. IBM X-Force ID: 142290.

medium4.3CVSS 3.0

AVNACLPRLUINSUCLINAN

IBM Maximo Asset Management 7.6 through 7.6.3 could allow an authenticated user to obtain sensitive information from the WhoAmI API. IBM X-Force ID: 142290.

Affected

28 ranges· showing 25

Vendor	Product	Version range	Fixed in
ibm	maximo_asset_management	—	—
ibm	maximo_asset_management	—	—
ibm	maximo_asset_management	—	—
ibm	maximo_asset_management	—	—
ibm	maximo_asset_management	—	—
ibm	maximo_asset_management	—	—
ibm	maximo_asset_management	—	—
ibm	maximo_asset_management	—	—
ibm	maximo_asset_management	—	—
ibm	maximo_asset_management	—	—
ibm	maximo_asset_management	7.6.0.0 – 7.6.3.0	—
ibm	maximo_for_aviation	—	—
ibm	maximo_for_aviation	—	—
ibm	maximo_for_aviation	—	—
ibm	maximo_for_aviation	—	—
ibm	maximo_for_aviation	—	—
ibm	maximo_for_life_sciences	—	—
ibm	maximo_for_nuclear_power	—	—
ibm	maximo_for_oil_and_gas	—	—
ibm	maximo_for_transportation	—	—
ibm	maximo_for_transportation	—	—
ibm	maximo_for_transportation	—	—
ibm	maximo_for_transportation	—	—
ibm	maximo_for_transportation	—	—
ibm	maximo_for_transportation	—	—