High

DATE	CVE	VULNERABILITY TITLE	RISK
2020-09-16	CVE-2020-4409	Open Redirect vulnerability in IBM products IBM Maximo Asset Management 7.6.0 and 7.6.1 could allow a remote attacker to conduct phishing attacks, using a tabnabbing attack. network low complexity ibm CWE-601	8.2
2019-06-19	CVE-2019-4364	Improper Neutralization of Formula Elements in a CSV File vulnerability in IBM products IBM Maximo Asset Management 7.6 is vulnerable to CSV injection, which could allow a remote authenticated attacker to execute arbirary commands on the system. network low complexity ibm CWE-1236	8.0