CVE-2021-20509

Summary

IBM Maximo Asset Management 7.6.0 and 7.6.1 is potentially vulnerable to CSV Injection. A remote attacker could execute arbitrary commands on the system, caused by improper validation of csv file contents. IBM X-Force ID: 198243.

Affected Software

VendorProductVersion RangeStatus
IBMMaximo Asset Management7.6.0affected
IBMMaximo Asset Management7.6.1affected

Weaknesses

  • Gain Access

ADP Enrichment

CVE Program Container

Additional References

References