CVE-2016-9976

N/A

Description

IBM Maximo Asset Management 7.1, 7.5, and 7.6 could allow a remote attacker to include arbitrary files. A remote attacker could send a specially-crafted URL request, which could allow the attacker to execute arbitrary code on the vulnerable server. IBM X-Force ID: 120252.

Details CVE

Score CVSS v3.1N/A

Publie5/3/2017

Derniere modification4/20/2025

Sourcenvd

Observations honeypot0

Produits affectes

ibm:maximo_asset_managementibm:maximo_asset_management_essentials

Faiblesses (CWE)

CWE-284

References

http://www.ibm.com/support/docview.wss?uid=swg22002018(psirt@us.ibm.com)

http://www.securityfocus.com/bid/98305(psirt@us.ibm.com)

http://www.ibm.com/support/docview.wss?uid=swg22002018(af854a3a-2127-422b-91ae-364da2661108)

http://www.securityfocus.com/bid/98305(af854a3a-2127-422b-91ae-364da2661108)

Correlations IOC

Aucune correlation enregistree

This product uses data from the NVD API but is not endorsed or certified by the NVD.