CVE-2017-1635
Severity Score
8.0
*CVSS v3
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
IBM Tivoli Monitoring V6 6.2.2.x could allow a remote attacker to execute arbitrary code on the system, caused by a use-after-free error. A remote attacker could exploit this vulnerability to execute arbitrary code on the system or cause the application to crash. IBM X-Force ID: 133243.
IBM Tivoli Monitoring V6 6.2.2.x podría permitir que un atacante remoto ejecute código arbitrario en el sistema, provocado por un error de uso de memoria previamente liberada. Un atacante remoto podría explotar esta vulnerabilidad para ejecutar código arbitrario en el sistema o provocar que la aplicación se cierre inesperadamente. IBM X-Force ID: 133243.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2016-11-30 CVE Reserved
- 2017-12-13 CVE Published
- 2024-08-13 EPSS Updated
- 2024-09-16 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-416: Use After Free
CAPEC
References (3)
| URL | Tag | Source |
|---|---|---|
| http://www.securityfocus.com/bid/101905 | Third Party Advisory |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| http://www.ibm.com/support/docview.wss?uid=swg22010554 | 2017-12-27 | |
| https://exchange.xforce.ibmcloud.com/vulnerabilities/133243 | 2017-12-27 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Ibm Search vendor "Ibm" | Tivoli Monitoring Search vendor "Ibm" for product "Tivoli Monitoring" | 6.2.2 Search vendor "Ibm" for product "Tivoli Monitoring" and version "6.2.2" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Tivoli Monitoring Search vendor "Ibm" for product "Tivoli Monitoring" | 6.2.2.2 Search vendor "Ibm" for product "Tivoli Monitoring" and version "6.2.2.2" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Tivoli Monitoring Search vendor "Ibm" for product "Tivoli Monitoring" | 6.2.2.3 Search vendor "Ibm" for product "Tivoli Monitoring" and version "6.2.2.3" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Tivoli Monitoring Search vendor "Ibm" for product "Tivoli Monitoring" | 6.2.2.4 Search vendor "Ibm" for product "Tivoli Monitoring" and version "6.2.2.4" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Tivoli Monitoring Search vendor "Ibm" for product "Tivoli Monitoring" | 6.2.2.5 Search vendor "Ibm" for product "Tivoli Monitoring" and version "6.2.2.5" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Tivoli Monitoring Search vendor "Ibm" for product "Tivoli Monitoring" | 6.2.2.6 Search vendor "Ibm" for product "Tivoli Monitoring" and version "6.2.2.6" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Tivoli Monitoring Search vendor "Ibm" for product "Tivoli Monitoring" | 6.2.2.7 Search vendor "Ibm" for product "Tivoli Monitoring" and version "6.2.2.7" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Tivoli Monitoring Search vendor "Ibm" for product "Tivoli Monitoring" | 6.2.2.8 Search vendor "Ibm" for product "Tivoli Monitoring" and version "6.2.2.8" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Tivoli Monitoring Search vendor "Ibm" for product "Tivoli Monitoring" | 6.2.2.9 Search vendor "Ibm" for product "Tivoli Monitoring" and version "6.2.2.9" | - |
Affected
| ||||||