Lucene search
K

6 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2025/04/15 3:28 a.m.25 views

Security Bulletin: IBM Maximo Application Suite - Monitor Component is vulnerable to Log Forging CVE-2024-35150

Summary IBM Maximo Application Suite - Monitor Component is vulnerable to Log Forging CVE-2024-35150. This bulletin identifies the steps to take to address the vulnerabilities. Vulnerability Details CVEID:CVE-2024-35150 DESCRIPTION: IBM Maximo Application Suite - Monitor Component does not...

5.3CVSS5.2AI score0.00273EPSS
Exploits0Affected Software1
NVD
NVD
added 2025/01/25 3:15 p.m.13 views

CVE-2024-35150

IBM Maximo Application Suite 8.10.12, 8.11.0, 9.0.1, and 9.1.0 - Monitor Component does not neutralize output that is written to logs, which could allow an attacker to inject false log entries...

5.3CVSS0.00273EPSS
Exploits0References1
Circl
Circl
added 2025/01/25 2:31 p.m.10 views

CVE-2024-35150

creationtimestamp| type| source ---|---|--- 2025-01-25 14:31:56+00:00| seen| https://infosec.exchange/users/cve/statuses/113889477647139830 2025-01-25 15:05:04+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/3084 2025-01-25 17:06:21+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/3103...

5.3CVSS5.7AI score0.00273EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2025/01/25 2:31 p.m.14 views

CVE-2024-35150 IBM Maximo Application Suite log manipulation

IBM Maximo Application Suite 8.10.12, 8.11.0, 9.0.1, and 9.1.0 - Monitor Component does not neutralize output that is written to logs, which could allow an attacker to inject false log entries...

5.3CVSS5.2AI score0.00273EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/01/25 2:31 p.m.19 views

CVE-2024-35150 IBM Maximo Application Suite log manipulation

IBM Maximo Application Suite 8.10.12, 8.11.0, 9.0.1, and 9.1.0 - Monitor Component does not neutralize output that is written to logs, which could allow an attacker to inject false log entries...

5.3CVSS0.00273EPSS
Exploits0References1
CVE
CVE
added 2025/01/25 2:31 p.m.52 views

CVE-2024-35150

CVE-2024-35150 affects IBM Maximo Application Suite Monitor Component (versions 8.10.12, 8.11.0, 9.0.1, 9.1.0). The vulnerability arises because the Monitor Component does not properly neutralize output written to logs, enabling log forging through injection of false log entries. IBM’s bulletin (...

5.3CVSS5.2AI score0.00273EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder