5.3
CVE-2024-35144
- EPSS 0.14%
- Veröffentlicht 25.01.2025 15:15:07
- Zuletzt bearbeitet 08.07.2025 20:29:44
- Quelle psirt@us.ibm.com
- CVE-Watchlists
- Unerledigt
IBM Maximo Application Suite information disclosure
IBM Maximo Application Suite 8.10, 8.11, and 9.0 - Monitor Component stores source code on the web server that could aid in further attacks against the system.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Ibm ≫ Maximo Application Suite Version >= 8.10 < 8.10.14
Ibm ≫ Maximo Application Suite Version >= 8.11 < 8.11.11
Ibm ≫ Maximo Application Suite Version9.0
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. 
Login
Login| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.14% | 0.337 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| psirt@us.ibm.com | 5.3 | 3.9 | 1.4 |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
|
CWE-540 Inclusion of Sensitive Information in Source Code
Source code on a web server or repository often contains sensitive information and should generally not be accessible to users.