CVE-2019-4349
https://notcve.org/view.php?id=CVE-2019-4349
IBM Maximo Anywhere 7.6.2.0, 7.6.2.1, 7.6.3.0, and 7.6.3.1 applications can be installed on a deprecated operating system version that could compromised the confidentiality and integrity of the service. IBM X-Force ID: 161486 Las aplicaciones IBM Maximo Anywhere versiones 7.6.2.0, 7.6.2.1, 7.6.3.0 y 7.6.3.1, se pueden instalar en una versión de sistema operativo en desuso que podría comprometer la confidencialidad e integridad del servicio. IBM X-Force ID: 161486 • https://exchange.xforce.ibmcloud.com/vulnerabilities/161486 https://www.ibm.com/support/pages/node/6358059 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVE-2019-4266
https://notcve.org/view.php?id=CVE-2019-4266
IBM Maximo Anywhere 7.6.2.0, 7.6.2.1, 7.6.3.0, and 7.6.3.1 does not have device jailbreak detection which could result in an attacker gaining sensitive information about the device. IBM X-Force ID: 160199. IBM Maximo Anywhere versiones 7.6.2.0, 7.6.2.1, 7.6.3.0 y 7.6.3.1, no presenta detección de jailbreak del dispositivo, lo que podría resultar en que un atacante consiga información confidencial sobre el dispositivo. ID de IBM X-Force: 160199. • https://exchange.xforce.ibmcloud.com/vulnerabilities/160199 https://www.ibm.com/support/pages/node/6205923 • CWE-269: Improper Privilege Management •
CVE-2019-4288
https://notcve.org/view.php?id=CVE-2019-4288
IBM Maximo Anywhere 7.6.2.0, 7.6.2.1, 7.6.3.0, and 7.6.3.1 could disclose highly senstiive user information to an authenticated user with physical access to the device. IBM X-Force ID: 160631. IBM Maximo Anywhere versiones 7.6.2.0, 7.6.2.1, 7.6.3.0, y 7.6.3.1, podría revelar información de usuario altamente confidencial a un usuario autenticado con acceso físico al dispositivo. IBM X-Force ID: 160631. • https://exchange.xforce.ibmcloud.com/vulnerabilities/160631 https://www.ibm.com/support/pages/node/6202708 •
CVE-2019-4286
https://notcve.org/view.php?id=CVE-2019-4286
IBM Maximo Anywhere 7.6.2.0, 7.6.2.1, 7.6.3.0, and 7.6.3.1 could disclose highly senstiive user information to an authenticated user with physical access to the device. IBM X-Force ID: 160514. IBM Maximo Anywhere versiones 7.6.2.0, 7.6.2.1, 7.6.3.0, y 7.6.3.1, podría revelar información de un usuario altamente confidencial a un usuario autenticado con acceso físico al dispositivo. IBM X-Force ID: 160514. • https://exchange.xforce.ibmcloud.com/vulnerabilities/160514 https://www.ibm.com/support/pages/node/6202556 • CWE-532: Insertion of Sensitive Information into Log File •
CVE-2019-4265
https://notcve.org/view.php?id=CVE-2019-4265
IBM Maximo Anywhere 7.6.0, 7.6.1, 7.6.2, and 7.6.3 does not have device root detection which could result in an attacker gaining sensitive information about the device. IBM X-Force ID: 160198. IBM Maximo Anywhere versiones 7.6.0, 7.6.1, 7.6.2 y 7.6.3, no posee detección root del dispositivo, lo que podría resultar en que un atacante consiga información confidencial sobre el dispositivo. ID de IBM X-Force: 160198. • https://exchange.xforce.ibmcloud.com/vulnerabilities/160198 https://www.ibm.com/support/pages/node/1078995 • CWE-922: Insecure Storage of Sensitive Information •