IBM Maximo Asset Management 126.96.36.199/188.8.131.52/184.108.40.206 improper authentication
A vulnerability has been found in IBM Maximo Asset Management 220.127.116.11/18.104.22.168/22.214.171.124 and classified as critical. Affected by this vulnerability is an unknown functionality. The manipulation leads to improper authentication. The CWE definition for the vulnerability is CWE-287. The weakness was published 09/22/2022. The advisory is shared at ibm.com. This vulnerability is known as CVE-2022-40616. The attack can be launched remotely. There are no technical details available. There is no exploit available. The price for an exploit might be around USD $0-$5k at the moment. It is declared as not defined. We expect the 0-day to have been worth approximately $5k-$25k. It is recommended to upgrade the affected component. A possible mitigation has been published before and not just after the disclosure of the vulnerability. The vulnerability is also documented other vulnerability databases: X-Force (236311).
|Field||09/22/2022 05:33 AM|
|name||Maximo Asset Management|
|cwe||287 (improper authentication)|
|cve||IBM Maximo Asset Management 126.96.36.199, 188.8.131.52, and 184.108.40.206 could allow a user to bypass authentication and obtain sensitive information or perform tasks they should not have access to. IBM X-Force ID: 236311.|
|type||Asset Management Software|
Interested in the pricing of exploits?
See the underground prices here!