Security Advisory

CVE-2024-45077

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-01-24 15:38:03

Last updated 2025-02-12 20:01:19

Assigner ibm

State PUBLISHED

Description

IBM Maximo Asset Management 7.6.1.3 MXAPIASSET API is vulnerable to unrestricted file upload which allows authenticated low privileged user to upload restricted file types with a simple method of adding a dot to the end of the file name if Maximo is installed on Windows operating system.

← Browse all CVEs View on cve.org ↗