High

DATE	CVE	VULNERABILITY TITLE	RISK
2019-06-19	CVE-2019-4364	Improper Neutralization of Formula Elements in a CSV File vulnerability in IBM products IBM Maximo Asset Management 7.6 is vulnerable to CSV injection, which could allow a remote authenticated attacker to execute arbirary commands on the system. network low complexity ibm CWE-1236	8.0
2018-08-03	CVE-2018-1524	Insecure Default Initialization of Resource vulnerability in IBM products IBM Maximo Asset Management 7.6 through 7.6.3 installs with a default administrator account that a remote intruder could use to gain administrator access to the system. network low complexity ibm CWE-1188	8.8