Request a Demo
Rewterz
Rewterz Threat Alert – Agent Tesla Malware – Active IOCs
August 29, 2022
Rewterz
Rewterz Threat Advisory – CVE-2022-31773 – IBM DataPower Gateway Vulnerability
August 29, 2022

Rewterz Threat Advisory – CVE-2022-35714 – IBM Maximo Asset Management Vulnerability

Severity

Medium

Analysis Summary

CVE-2022-35714

IBM Maximo Asset Management 7.6.1 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session.

Impact

  • Cross-Site Scripting

Indicators Of Compromise

CVE

  • CVE-2022-35714

Affected Vendors

IBM

Affected Products

IBM Maximo Asset Management 7.6.1.1
IBM Maximo Asset Management 7.6.1.2

Remediation

Refer to IBM Security Advisory for patch, upgrade or suggested workaround information.

IBM Security Advisory