CVE-2021-38924

Description

IBM Maximo Asset Management 7.6.1.1 and 7.6.1.2 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system. IBM X-Force ID: 210163.

Related CPE's

aibmmaximo_asset_management7.6.1.1*******

aibmmaximo_asset_management7.6.1.2*******

aibmmaximo_application_suite8.7*******

aibmmaximo_application_suite8.8*******

References

https://www.ibm.com/support/pages/node/6620059

PatchVendor Advisory

ibm-maximo-cve202138924-info-disc (210163)

VDB EntryVendor Advisory

CvssV3 impact

Could not find any metrics

CvssV2 impact

Could not find any metrics
Created by Yello
About Severity.io