CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2024-35148

IBM Maximo Application Suite 8.10.10, 8.11.7, and 9.0 - Monitor Component is vulnerable to SQL injection. A remote attacker could send specially crafted SQL statements, which could allow the attacker to view, add, modify or delete information in the back-end database.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 17.7%

CVSS Severity

CVSS v3 Score 6.3

References

https://www.ibm.com/support/pages/node/7174952

Products affected by CVE-2024-35148

Ibm » Maximo Application Suite » Version: 8.10.10

cpe:2.3:a:ibm:maximo_application_suite:8.10.10
Ibm » Maximo Application Suite » Version: 8.11.7

cpe:2.3:a:ibm:maximo_application_suite:8.11.7
Ibm » Maximo Application Suite » Version: 9.0

cpe:2.3:a:ibm:maximo_application_suite:9.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-35148

Products

Pricing

Contact Us