CVE-2023-32332

Name of the Vulnerable Software and Affected Versions IBM Maximo Application Suite versions 8.9 through 8.10 IBM Maximo Asset Management versions 7.6.1.2 through 7.6.1.3

Description A remote attacker could inject malicious HTML code, which when viewed, would be executed in the victim's Web browser within the security context of the hosting site.

Recommendations For IBM Maximo Application Suite versions 8.9 through 8.10, update to a version that includes the fix for this issue. For IBM Maximo Asset Management versions 7.6.1.2 through 7.6.1.3, update to a version that includes the fix for this issue. As a temporary workaround, consider restricting access to sensitive areas of the application to minimize the risk of exploitation.