← Retour aux CVEs
CVE-2017-1352
N/ADescription
IBM Maximo Asset Management 7.5 and 7.6 could allow an authenticated user to inject commands into work orders that could be executed by another user that downloads the affected file. IBM X-Force ID: 126538.
Details CVE
Score CVSS v3.1N/A
Publie9/12/2017
Derniere modification4/20/2025
Sourcenvd
Observations honeypot0
Produits affectes
ibm:maximo_asset_management
Faiblesses (CWE)
CWE-77
References
http://www.ibm.com/support/docview.wss?uid=swg22006650(psirt@us.ibm.com)
http://www.securityfocus.com/bid/100697(psirt@us.ibm.com)
https://exchange.xforce.ibmcloud.com/vulnerabilities/126538(psirt@us.ibm.com)
http://www.ibm.com/support/docview.wss?uid=swg22006650(af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/100697(af854a3a-2127-422b-91ae-364da2661108)
https://exchange.xforce.ibmcloud.com/vulnerabilities/126538(af854a3a-2127-422b-91ae-364da2661108)
Correlations IOC
Aucune correlation enregistree
This product uses data from the NVD API but is not endorsed or certified by the NVD.