PT-2025-19898 · Ibm · Ibm Maximo Application Suite
Published
2025-05-06
·
Updated
2025-05-07
·
CVE-2025-2898
CVSS v3.1
8.8
High
| Vector | AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
IBM Maximo Application Suite version 9.0
Description
The issue is related to a security configuration vulnerability in Role-Based Access Control (RBAC) configurations, which could allow an attacker with some level of access to elevate their privileges.
Recommendations
For IBM Maximo Application Suite version 9.0, consider reviewing and adjusting the Role-Based Access Control (RBAC) configurations to prevent privilege escalation.
As a temporary workaround, restrict access to sensitive areas of the application to minimize the risk of exploitation.
Fix
LPE
Incorrect Privilege Assignment
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Ibm Maximo Application Suite