WHAT HAPPENED?

IBM has released a security bulletin to addresses a High vulnerability in the Maximo Asset Management System.

Advanced Users: For complete descriptions of the vulnerability, please go to:

• Security Bulletin: IBM Maximo Asset Management is vulnerable to Authentication Bypass (CVE-2020-4493)

AFFECTED SYSTEMS:

• IBM Maximo Asset Management 7.6.0 and 7.6.1

WHAT'S THE PROBLEM?

A remote attacker could exploit this vulnerability to bypass authentication and issue commands using a specially crafted HTTP command.

RELATED LINKS

• IT Security
• FireEye Intelligence Portal