Ibm: >> Maximo Application Suite >> 7.6.1.3 Security Vulnerabilities
IBM Maximo Application Suite 7.6.1.3 is vulnerable to an XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources. IBM X-Force ID: 284566.
CVSS Score
8.2
EPSS Score
0.0
Published
2024-03-14
IBM Maximo Application Suite 7.6.1.3 is vulnerable to stored cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 262192.
CVSS Score
6.4
EPSS Score
0.001
Published
2024-03-13