Unrated severityNVD Advisory· Published Jan 25, 2025· Updated Feb 12, 2025
IBM Maximo Application Suite SQL injection
CVE-2024-35148
Description
IBM Maximo Application Suite 8.10.10, 8.11.7, and 9.0 - Monitor Component is vulnerable to SQL injection. A remote attacker could send specially crafted SQL statements, which could allow the attacker to view, add, modify or delete information in the back-end database.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2cpe:2.3:a:ibm:maximo_application_suite:8.10.10:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:ibm:maximo_application_suite:8.10.10:*:*:*:*:*:*:*range: 8.10.10, 8.11,7 9.0.0
- (no CPE)range: = 8.10.10, 8.11.7, 9.0
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.