CVE-2019-4349

CWE-200Information Exposure3 documents3 sources
Severity
3.5LOW
EPSS
0.0%
top 84.73%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
IBM Maximo Anywhere
Timeline
PublishedNov 3
Latest updateMay 24

Description

IBM Maximo Anywhere 7.6.2.0, 7.6.2.1, 7.6.3.0, and 7.6.3.1 applications can be installed on a deprecated operating system version that could compromised the confidentiality and integrity of the service. IBM X-Force ID: 161486

CVSS vector

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:NExploitability: 0.9 | Impact: 2.5

Affected Packages2 packages

CVEListV5ibm/maximo_anywhere4 versions+3
NVDibm/maximo_anywhere4 versions+3

Patches

Patch: www.ibm.comPatch: www.ibm.com

🔴Vulnerability Details

2
GHSA
GHSA-q3h7-p4p5-w4x3: IBM Maximo Anywhere 72022-05-24
CVEList
CVE-2019-4349: IBM Maximo Anywhere 72020-11-03
CVE-2019-4349 (LOW CVSS 3.5) | IBM Maximo Anywhere 7.6.2.0 | cvebase.io