← back
CVE-2019-4286

CVE-2019-4286

CVSS 4.3 MEDIUMEPSS 0.3%
Vexday Risk Score
13Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 4.3EPSS 0.3%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
29 Apr 2020Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
IBM Maximo Anywhere 7.6.2.0, 7.6.2.1, 7.6.3.0, and 7.6.3.1 could disclose highly senstiive user information to an authenticated user with physical access to the device. IBM X-Force ID: 160514.
CVSS:3.0/S:U/AC:L/C:H/AV:P/PR:L/UI:N/A:N/I:N/E:U/RC:C/RL:O
Affected products
IBM · Maximo Anywhere