CVE-2024-37068

Name of the Vulnerable Software and Affected Versions IBM Maximo Application Suite - Manage Component versions 8.10 through 9.0

Description The issue is related to the use of weaker than expected cryptographic algorithms, which could allow an attacker to decrypt highly sensitive information using man-in-the-middle techniques. This poses a problematic risk to system security.

Recommendations For versions 8.10, 8.11, and 9.0, urgently upgrade the affected component to patch the flaw. As a temporary workaround, consider restricting the use of the affected Manage Component until a patch is available.