Primary

Context

IBM Maximo Application Suite Unrestricted File Upload Vulnerability Allowing Potential Execution of Dangerous Files

Vulnerability

Patched

A vulnerability in IBM Maximo Application Suite 9.0 allows authenticated users to upload files of dangerous types that could be executed by other users upon opening. This represents an unrestricted file upload issue, which could lead to the execution of malicious files.

Impact

Exploitation of this vulnerability could result in unauthorized execution of uploaded files, potentially leading to further exploitation or damage within the application or user environment.

Remediation

Users are advised to upgrade to IBM Maximo Application Suite version 9.0.7. Instructions for upgrading can be found on the IBM Support page.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

3.1

impact

2.5

exploitability

5.0

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

3.1

impact

2.5

exploitability

5.0

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

IBM Maximo Application Suite Unrestricted File Upload Vulnerability Allowing Potential Execution of Dangerous Files

Vulnerability

Impact

Remediation

Affected Products

IBM Maximo Application Suite

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating