CVE-2025-3357
CRITICALDescription
IBM Tivoli Monitoring 6.3.0.7 through 6.3.0.7 Service Pack 19 could allow a remote attacker to execute arbitrary code due to improper validation of an index value of a dynamically allocated array.
Is your site exposed to CVE-2025-3357?
Run a free security scan — no signup, results in seconds.
CVSS v3.1 Score
Weakness Type (CWE)
Affected Products
| Vendor | Product |
|---|---|
| ibm | tivoli_monitoring |
| ibm | tivoli_monitoring |
References
Advisories & Patches
Frequently Asked Questions
What is CVE-2025-3357? +
How severe is CVE-2025-3357? +
What products are affected by CVE-2025-3357? +
How do I check if I'm vulnerable to CVE-2025-3357? +
Related Vulnerabilities
In NetXDuo version before 6.4.4, a networking support module for Eclipse Foundation ThreadX, in the DHCPV6 client there was an …
Improper Validation of Specified Index, Position, or Offset in Input vulnerability in Mitsubishi Electric Corporation MELSEC iQ-F Series CPU modules …
A possible security vulnerability has been identified in Apache Kafka. By default, the broker property `sasl.oauthbearer.jwt.validator.class` is set to `org.apache.kafka.common.security.oauthbearer.DefaultJwtValidator`. …
Improper input validation in the GPU driver could allow an attacker to exploit a heap overflow potentially resulting in arbitrary …
Malicious software running in a guest VM can exploit the buffer overflow to achieve code execution on the host in …
Out of bounds read vulnerability due to improper bounds checking in NI LabVIEW in lvre!UDecStrToNum that may result in information …