Command Injection Vulnerability in IBM Maximo Asset Management 7.5 and 7.6

Command Injection Vulnerability in IBM Maximo Asset Management 7.5 and 7.6

CVE-2017-1352 · MEDIUM Severity

AV:N/AC:M/AU:S/C:P/I:P/A:P

IBM Maximo Asset Management 7.5 and 7.6 could allow an authenticated user to inject commands into work orders that could be executed by another user that downloads the affected file. IBM X-Force ID: 126538.

Learn more about our User Device Pen Test.