Known Vulnerabilities for Maximo Application Suite by IBM
Listed below are 5 of the newest known vulnerabilities associated with "Maximo Application Suite" by "IBM".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-4820 | IBM Maximo Application Suite 9.1, 9.0, 8.11, and 8.10 does not set the secure attribute on authorization tokens or session co... | Not Provided | 2026-04-01 | 2026-04-01 |
| CVE-2025-14684 | IBM Maximo Application Suite - Monitor Component 9.1, 9.0, 8.11, and 8.10 could allow an unauthorized user to inject data int... | Not Provided | 2026-03-25 | 2026-03-28 |
| CVE-2021-38924 | IBM Maximo Asset Management 7.6.1.1 and 7.6.1.2 could allow a remote attacker to obtain sensitive information when a detailed... | 7.5 - HIGH | 2022-09-14 | 2023-08-08 |
| CVE-2021-29854 | IBM Maximo Asset Management 7.6.1.1 and 7.6.1.2 is vulnerable to HTTP header injection, caused by improper validation of inpu... | 7.2 - HIGH | 2022-05-03 | 2022-05-11 |
| CVE-2021-29744 | IBM Maximo Asset Management 7.6.0 and 7.6.1 is vulnerable to cross-site scripting. This vulnerability allows users to embed a... | 5.4 - MEDIUM | 2021-08-27 | 2021-09-01 |
| CVE-2021-29743 | IBM Maximo Asset Management 7.6.0 and 7.6.1 is vulnerable to stored cross-site scripting. This vulnerability allows users to ... | 5.4 - MEDIUM | 2021-08-30 | 2021-09-02 |