Lucene search
IbmCVELIST:CVE-2019-4364HistoryJun 19, 2019 - 1:30 p.m.
CVE-2019-4364
2019-06-1913:30:19
ibm
www.cve.org
5
CVSS3
5.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L/E:U/RL:O/RC:C
AI Score
7.6
Confidence
High
EPSS
0.002
Percentile
58.6%
IBM Maximo Asset Management 7.6 is vulnerable to CSV injection, which could allow a remote authenticated attacker to execute arbirary commands on the system. IBM X-Force ID: 161680.
CNA Affected
[
{
"product": "Maximo Asset Management",
"vendor": "IBM",
"versions": [
{
"status": "affected",
"version": "7.6"
}
]
}
]Related
cve
cve
CVE-2019-4364
2019-06-19 14:15:11
ibm
ibm
nvd
nvd
CVE-2019-4364
2019-06-19 14:15:11
prion
prion
Design/Logic Flaw
2019-06-19 14:15:00
CVSS3
5.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L/E:U/RL:O/RC:C
AI Score
7.6
Confidence
High
EPSS
0.002
Percentile
58.6%
Related for CVELIST:CVE-2019-4364