CVE-2023-47718

CVSS 3.1 Score 8.8 of 10 (high)

Details

Published Jan 19, 2024
Updated: Jan 24, 2024
CWE ID 352

Summary

CVE-2023-47718 is a cross-site request forgery (CSRF) vulnerability affecting IBM Maximo Asset Management 7.6.1.3 and Manage Component 8.10 through 8.11. This issue permits attackers to execute malicious and unauthorized actions on trusting websites by intercepting and transmitting forged requests from a targeted user. IBM X-Force has assigned ID 271843 to this security flaw. This vulnerability could potentially lead to significant data breaches or system compromises, emphasizing the need for immediate patching.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • IBM Maximo Asset Management

Affected Vendors

  • IBM Corporation