← Back

CVE-2020-4650

nvd nist
Published: Nov 9, 2020Modified: Nov 21, 2024

JSON object

Loading...
3.3
Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
Exploitability: 1.8 / Impact: 1.4
Source: NVD

Description

IBM Maximo Spatial Asset Management 7.6.0.3, 7.6.0.4, 7.6.0.5, and 7.6.1.0 allows web pages to be stored locally which can be read by another user on the system. IBM X-Force ID: 186023.

Affected (4)

Ibm
1 product
Maximo Spatial Asset Management
Configuration A
4 vulnerable
Vulnerable SoftwareAffected Versions
Ibm
Maximo Spatial Asset Management
Version 7.6.0.3
Maximo Spatial Asset Management
Version 7.6.0.4
Maximo Spatial Asset Management
Version 7.6.0.5
Maximo Spatial Asset Management
Version 7.6.1.0

Related CWEs

CWE-922
Insecure Storage of Sensitive Information
The product stores sensitive information without properly limiting read or write access by unauthorized actors.

References (4)

Source: psirt@us.ibm.com
VDB EntryVendor Advisory
Source: psirt@us.ibm.com
PatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
VDB EntryVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
PatchVendor Advisory

Timeline

No history available yet.