CVE-2023-32335
CVSS 3.1 Score 7.5 of 10 (high)
Details
Published Mar 13, 2024
Updated: Jan 14, 2025
CWE ID 598
Summary
CVE-2023-32335 is a vulnerability affecting IBM Maximo Application Suite 8.10, 8.11, and IBM Maximo Asset Management 7.6.1.3. The issue involves the storage of sensitive information in URL parameters, potentially leading to information disclosure if unauthorized parties gain access to these URLs. This can occur through server logs, referrer headers, or browser history. IBM's X-Force has assigned ID 255075 to this issue.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Products
- IBM Maximo Asset Management
Affected Vendors
- IBM Corporation