Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
IBM Maximo Application Suite - Monitor Component uses Log Forging which is vulnerable to .
Vulnerability Description
IBM Maximo Application Suite - Monitor Component 9.1, 9.0, 8.11, and 8.10 could allow an unauthorized user to inject data into log messages due to improper neutralization of special elements when written to log files.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
Vulnerability Type
日志输出的转义处理不恰当
Vulnerability Title
IBM Maximo Application Suite - Monitor Component 安全漏洞
Vulnerability Description
IBM Maximo Application Suite - Monitor Component是美国国际商业机器(IBM)公司的一个提供资产运行状态监测与数据分析能力的工业资产管理组件。 IBM Maximo Application Suite - Monitor Component 9.1版本、9.0版本、8.11版本和8.10版本存在安全漏洞,该漏洞源于写入日志文件时对特殊元素中和不当,可能导致未经授权的用户将数据注入日志消息。
CVSS Information
N/A
Vulnerability Type
N/A