Description
IBM Maximo Application Suite - Monitor Component 9.1, 9.0, 8.11, and 8.10 could allow an unauthorized user to inject data into log messages due to improper neutralization of special elements when written to log files.
Published: 2026-03-25
Score: 4 Medium
EPSS: < 1% Very Low
KEV: No
Impact: Log forging
Action: Apply Patch
AI Analysis

Impact

The vulnerability in the IBM Maximo Application Suite Monitor Component allows an unauthorized user to insert arbitrary text into log entries because special characters are not properly neutralized. This flaw, classified as CWE‑117, results in forged log messages that appear legitimate, thereby undermining the integrity of audit trails, alerting mechanisms, and monitoring tools. The flaw does not provide code execution or elevate privileges, but it can conceal malicious activity or mislead investigations.

Affected Systems

Affected systems include the IBM Maximo Application Suite Monitor Component in releases 8.10, 8.11, 9.0 and 9.1. The vendor documentation identifies the vulnerable releases as 8.10.0 through 8.10.26, 8.11.0 through 8.11.24, 9.0.0 through 9.0.16, and 9.1.0 through 9.1.6, and provides patch versions 8.10.26, 8.11.24, 9.0.16 and 9.1.6 for remediation.

Risk and Exploitability

The CVSS base score of 4.0 indicates a medium severity, and the EPSS score of less than 1 % suggests that exploitation is currently unlikely. The vulnerability is not listed in the CISA KEV catalog. An attacker would typically need a user account that can submit data to the Monitor Component; special privileges or remote code execution are not required. By injecting deceptive content into logs, an adversary can make legitimate entries appear fabricated, potentially hiding other attacks or misdirecting forensic analysis. Prompt application of the vendor’s patch removes the vulnerable code path and restores trust in log data.

Generated by OpenCVE AI on April 1, 2026 at 07:24 UTC.

Remediation

Vendor Solution

Remediated Product(s)Version(s)IBM Maximo Application Suite - Monitor Component9.1.6 (available from the Catalog under Update Available) https://www.ibm.com/docs/en/mas-cd/continuous-delivery IBM Maximo Application Suite - Monitor Component9.0.16 (available from the Catalog under Update Available) https://www.ibm.com/docs/en/mas-cd/continuous-delivery IBM Maximo Application Suite - Monitor Component8.11.24 (available from the Catalog under Update Available) https://www.ibm.com/docs/en/mas-cd/continuous-delivery IBM Maximo Application Suite - Monitor Component8.10.26 (available from the Catalog under Update Available) https://www.ibm.com/docs/en/mas-cd/continuous-delivery

OpenCVE Recommended Actions

  • Update the IBM Maximo Monitor Component to the latest release available in the IBM Catalog (9.1.6 for 9.1, 9.0.16 for 9.0, 8.11.24 for 8.11, and 8.10.26 for 8.10).
  • Verify that the patch has been applied by checking the component version in the administration console or via the API after deployment.
  • If the update cannot be applied immediately, restrict or suspend user access that can write to the Monitor Component to minimize the opportunity for log forging.
  • Continuously audit log files for anomalous or unexpected entries that could indicate forgery attempts and investigate any suspicious records.

Generated by OpenCVE AI on April 1, 2026 at 07:24 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Wed, 01 Apr 2026 02:15:00 +0000

Type Values Removed Values Added
First Time appeared Ibm maximo Application Suite
CPEs cpe:2.3:a:ibm:maximo_application_suite:*:*:*:*:*:*:*:*
Vendors & Products Ibm maximo Application Suite

Sat, 28 Mar 2026 03:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Thu, 26 Mar 2026 12:00:00 +0000

Type Values Removed Values Added
First Time appeared Ibm maximo Application Suite - Monitor Component
Vendors & Products Ibm maximo Application Suite - Monitor Component

Wed, 25 Mar 2026 21:30:00 +0000

Type Values Removed Values Added
Description IBM Maximo Application Suite - Monitor Component 9.1, 9.0, 8.11, and 8.10 could allow an unauthorized user to inject data into log messages due to improper neutralization of special elements when written to log files.
Title IBM Maximo Application Suite - Monitor Component uses Log Forging which is vulnerable to .
First Time appeared Ibm
Ibm maximo Application Suite Monitor Component
Weaknesses CWE-117
CPEs cpe:2.3:a:ibm:maximo_application_suite___monitor_component:8.10.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:maximo_application_suite___monitor_component:8.10:*:*:*:*:*:*:*
cpe:2.3:a:ibm:maximo_application_suite___monitor_component:8.11.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:maximo_application_suite___monitor_component:8.11:*:*:*:*:*:*:*
cpe:2.3:a:ibm:maximo_application_suite___monitor_component:9.0.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:maximo_application_suite___monitor_component:9.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:maximo_application_suite___monitor_component:9.1.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:maximo_application_suite___monitor_component:9.1:*:*:*:*:*:*:*
Vendors & Products Ibm
Ibm maximo Application Suite Monitor Component
References
Metrics cvssV3_1

{'score': 4, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N'}

Subscriptions

Ibm Maximo Application Suite - Monitor Component Maximo Application Suite Monitor Component
cve-icon MITRE

Status: PUBLISHED

Assigner: ibm

Published:

Updated: 2026-03-28T01:49:31.469Z

Reserved: 2025-12-13T20:24:32.826Z

Link: CVE-2025-14684

cve-icon Vulnrichment

Updated: 2026-03-28T01:49:23.106Z

cve-icon NVD

Status : Analyzed

Published: 2026-03-25T22:16:18.660

Modified: 2026-03-31T20:20:07.350

Link: CVE-2025-14684

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-04-02T07:59:03Z

Weaknesses