CVE-2020-4521

Summary

IBM Maximo Asset Management 7.6.0 and 7.6.1 could allow a remote authenticated attacker to execute arbitrary code on the system, caused by an unsafe deserialization in Java. By sending specially-crafted request, an attacker could exploit this vulnerability to execute arbitrary code on the system. IBM X-Force ID: 182396.

Affected Software

VendorProductVersion RangeStatus
IBMMaximo Asset Management7.6.0affected
IBMMaximo Asset Management7.6.1affected

Weaknesses

  • Gain Access

ADP Enrichment

CVE Program Container

Additional References

References