CVE-2023-32335

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Mar 13, 2024
Updated: Jan 14, 2025
CWE ID 598

Summary

CVE-2023-32335 is a vulnerability affecting IBM Maximo Application Suite 8.10, 8.11, and IBM Maximo Asset Management 7.6.1.3. The issue involves the storage of sensitive information in URL parameters, potentially leading to information disclosure if unauthorized parties gain access to these URLs. This can occur through server logs, referrer headers, or browser history. IBM's X-Force has assigned ID 255075 to this issue.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • IBM Maximo Asset Management

Affected Vendors

  • IBM Corporation