IBM Maximo Application Suite – Monitor Component uses Log Forging...

4 / 10

MEDIUM

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

Description

IBM Maximo Application Suite - Monitor Component 9.1, 9.0, 8.11, and 8.10 could allow an unauthorized user to inject data into log messages due to improper neutralization of special elements when written to log files.

Basic Information

ID CVE-2025-14684

Source ibm

Published Mar 25, 2026 at 21:22

Modified Mar 28, 2026 at 01:49

Affected Product

Vendor IBM

Product Maximo Application Suite - Monitor Component

Version 9.1

Affected Versions IBM Maximo Application Suite - Monitor Component 9.1
IBM Maximo Application Suite - Monitor Component 9.0
IBM Maximo Application Suite - Monitor Component 8.11
IBM Maximo Application Suite - Monitor Component 8.10

CWE Classification

CWE-117

References

www.ibm.com /support/pages/node/7267481

{
    "lastseen": "",
    "description": "IBM Maximo Application Suite - Monitor Component 9.1, 9.0, 8.11, and 8.10 could allow an unauthorized user to inject data into log messages due to improper neutralization of special elements when written to log files.",
    "published": "2026-03-25T21:22:44.935Z",
    "modified": "2026-03-28T01:49:31.469Z",
    "type": "cve",
    "title": "IBM Maximo Application Suite - Monitor Component uses Log Forging which is vulnerable to .",
    "source": "ibm",
    "references": "https://www.ibm.com/support/pages/node/7267481",
    "id": "CVE-2025-14684",
    "bulletinFamily": "",
    "cwe": [
        "CWE-117"
    ],
    "cvelist": null,
    "sourceData": "IBM Maximo Application Suite - Monitor Component 9.1\nIBM Maximo Application Suite - Monitor Component 9.0\nIBM Maximo Application Suite - Monitor Component 8.11\nIBM Maximo Application Suite - Monitor Component 8.10",
    "sourceHref": "",
    "cvss": {
        "score": 4,
        "severity": "MEDIUM",
        "vector": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Maximo Application Suite - Monitor Component",
    "version": "9.1",
    "vendor": "IBM",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}

IBM Maximo Application Suite – Monitor Component uses Log Forging which is vulnerable to ._CVE-2025-14684