CVE-2020-4651

Name of the Vulnerable Software and Affected Versions IBM Maximo Spatial Asset Management versions 7.6.0.3 through 7.6.1.0

Description The issue allows an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts due to cross-site request forgery.

Recommendations For versions 7.6.0.3 through 7.6.1.0, consider implementing additional security measures to prevent cross-site request forgery attacks, such as validating user requests and ensuring that sensitive actions require explicit user confirmation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.