CVE-2023-43037 MEDIUM

CVE-2023-43037: IBM Maximo Application Suite improper access control

Vendor Ibm

Product Maximo Application Suite

Weakness CWE-20 · Input validation

Published April 10, 2025

Last update August 16, 2025

CVSS base score

6.5/10

Attack vector Network

Attack complexity Low

Privileges required Low

User interaction None

Confidentiality None

Integrity High

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

What the vulnerability does

01Description

IBM Maximo Application Suite 8.11 and 9.0 could allow an authenticated user to perform unauthorized actions due to improper input validation.

Key dates

April 10, 2025 CVE published

August 16, 2025 Record updated

External resources

Related vulnerabilities

CVE CVE-2023-43037

CWE CWE-20

CVSS 6.5 / MEDIUM

Vendor Ibm

Product Maximo Application Suite

Affected 8.11

Vendor Ibm

Product Maximo Application Suite

Affected 9.0