VDB

CNVD-2024-06214

CNVD-2024-06214 PUBLISHED CVSS 4.300000190734863 MEDIUM

IBM Maximo Asset Management是美国国际商业机器(IBM)公司的一款完全集成的企业资产管理 (EAM) 平台。 IBM Maximo Asset Management存在跨站请求伪造漏洞,远程攻击者可利用该漏洞提交特殊的请求,可获取敏感信息或执行恶意操作。

Risk Scores

CVSS 3.1
4.300000190734863
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

Affected Products

VendorProductVersions
IBMMaximo Asset Management Manage Component8.10, 8.11
IBMMaximo Asset Management7.6.1.3

Exploit Intelligence

Timeline

  • Jan 15, 2024 CVE Published
  • Feb 12, 2024 PoC Published

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›