VYPR
Unrated severityNVD Advisory· Published Jan 25, 2025· Updated Feb 12, 2025

IBM Maximo Application Suite SQL injection

CVE-2024-35148

Description

IBM Maximo Application Suite 8.10.10, 8.11.7, and 9.0 - Monitor Component is vulnerable to SQL injection. A remote attacker could send specially crafted SQL statements, which could allow the attacker to view, add, modify or delete information in the back-end database.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • cpe:2.3:a:ibm:maximo_application_suite:8.10.10:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:ibm:maximo_application_suite:8.10.10:*:*:*:*:*:*:*range: 8.10.10, 8.11,7 9.0.0
    • (no CPE)range: = 8.10.10, 8.11.7, 9.0

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.