CVE-2025-3357 IBM Tivoli Monitoring code execution

🗓️ 28 May 2025 14:51:29Reported by ibmType

Remote code execution vulnerability in IBM Tivoli Monitoring version 6.3.0.7 due to index validation issue.

Reporter	Title	Published	Views	Family All 14
ATTACKERKB	CVE-2025-3357	28 May 202515:15	–	attackerkb
IBM Security Bulletins	Security Bulletin: IBM Tivoli Monitoring is affected by an insufficient validation of input data	28 May 202515:38	–	ibm
IBM Security Bulletins	Security Bulletin: Due to the use of IBM Tivoli Monitoring and IBM Db2, IBM Cloud Pak System is affected by multiple vulnerabilities	28 May 202600:49	–	ibm
Circl	CVE-2025-3357	28 May 202515:04	–	circl
CNNVD	IBM Tivoli Monitoring 安全漏洞	28 May 202500:00	–	cnnvd
CNVD	IBM Tivoli Monitoring Remote Code Execution Vulnerability (CNVD-2025-12571)	30 May 202500:00	–	cnvd
CVE	CVE-2025-3357	28 May 202514:51	–	cve
EUVD	EUVD-2025-16283	3 Oct 202520:07	–	euvd
NCSC	Vulnerability fixed in IBM Tivoli Monitoring	2 Jun 202509:00	–	ncsc
NVD	CVE-2025-3357	28 May 202515:15	–	nvd

[
  {
    "cpes": [
      "cpe:2.3:a:ibm:tivoli_monitoring:6.3.0.7:*:*:*:*:*:*:*",
      "cpe:2.3:a:ibm:tivoli_monitoring:6.3.0.7:service_pack_15:*:*:*:*:*:*"
    ],
    "defaultStatus": "unaffected",
    "product": "Tivoli Monitoring",
    "vendor": "IBM",
    "versions": [
      {
        "lessThanOrEqual": "6.3.0.7 SP15",
        "status": "affected",
        "version": "6.3.0.7",
        "versionType": "semver"
      }
    ]
  }
]

Source	Link
ibm	www.ibm.com/support/pages/node/7234923

26 Aug 2025 14:56Current

CVSS 3.19.8

EPSS0.00944

CWE-1285