PT-2023-13442 · Ibm · Ibm Maximo Asset Management+1
Published
2023-01-06
·
Updated
2023-01-12
·
CVE-2022-35281
CVSS v3.1
8.8
High
| Vector | AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
IBM Maximo Asset Management versions 7.6.1.1 through 7.6.1.3
IBM Maximo Manage versions 8.3 through 8.4
Description
The issue concerns CSV injection.
Recommendations
For IBM Maximo Asset Management versions 7.6.1.1 through 7.6.1.3, update to a version that includes a fix for this issue.
For IBM Maximo Manage versions 8.3 through 8.4, update to a version that includes a fix for this issue.
Fix
RCE
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Ibm Maximo Asset Management
Ibm Maximo Manage