CVE Details
Basic Information
| Title | IBM Tivoli Monitoring code execution |
|---|---|
| Type | cve |
| Published | 2025-08-06T13:49:35.970Z |
| Modified | 2025-08-06T13:49:35.970Z |
Product Information
| Vendor | IBM |
|---|---|
| Product | Tivoli Monitoring |
| Version | 6.3.0.7 |
CVSS Information
| Base Score | 8.1 (HIGH) |
|---|---|
| Attack Vector | CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H |
AI Analysis
| AI Description | IBM Tivoli Monitoring is vulnerable to a heap-based buffer overflow, allowing remote attackers to execute arbitrary code or crash the system. |
|---|---|
| AI Severity | High |
| AI Vendor | IBM |
| AI Product | Tivoli Monitoring |
| AI Version | 6.3.0.7 |
Affected Products
- IBM Tivoli Monitoring 6.3.0.7
Additional Information
| CWE List | CWE-122 |
|---|---|
| Source | ibm |
Description
IBM Tivoli Monitoring 6.3.0.7 through 6.3.0.7 Service Pack 20 is vulnerable to a heap-based buffer overflow, caused by improper bounds checking. A remote attacker could overflow a buffer and execute arbitrary code on the system or cause the server to crash.