CVE-2021-38924

Summary

IBM Maximo Asset Management 7.6.1.1 and 7.6.1.2 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system. IBM X-Force ID: 210163.

Affected Software

VendorProductVersion RangeStatus
IBMMaximo Asset Management7.6.1.1affected
IBMMaximo Asset Management7.6.1.2affected

Weaknesses

  • Obtain Information

ADP Enrichment

CVE Program Container

Additional References

References