CVE-2019-4530IBM Maximo Asset Management vulnerability

3 documents3 sources
Severity
6.5MEDIUMNVD
EPSS
0.2%
top 57.40%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
IBM Maximo Asset Management
Timeline
PublishedNov 20
Latest updateMay 24

Description

IBM Maximo Asset Management 7.6, 7.6.1, and 7.6.1.1 could allow an authenticated user to delete a record that they should not normally be able to. IBM X-Force ID: 165586.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:NExploitability: 2.8 | Impact: 3.6

Affected Packages2 packages

CVEListV5ibm/maximo_asset_management7.6, 7.6.1, 7.6.1.1+2
NVDibm/maximo_asset_management7.6.0.0, 7.6.1, 7.6.1.1+2

🔴Vulnerability Details

2
GHSA
GHSA-fj27-mc6x-ffpr: IBM Maximo Asset Management 72022-05-24
CVEList
CVE-2019-4530: IBM Maximo Asset Management 72019-11-20
CVE-2019-4530 — IBM vulnerability | cvebase