heise PlusAbo
Anzeige

Security vulnerabilities: Attackers can crash IBM Tivoli Monitoring

In a current version, the developers have protected IBM Tivoli Monitoring against possible attacks.

listen Print view
One finger presses a symbolic update button.

(Image: Photon photo/Shutterstock.com)

1 min. read
Security
By

IBM's IT management software Tivoli Monitoring is vulnerable, and attackers can exploit two security gaps. An update to close the gaps is available for download.

Install the security patch

In a post, the developers warn that remote attackers can trigger memory errors (buffer overflow) in both cases (CVE-2025-3354 “high,” CVE-2025-3320 “high”) due to insufficient checks. This leads to servers crashing.

It is not clear from the warning message how attacks can take place in detail. It also remains unclear whether there are already attacks. The developers assure us that they have solved the security problem in IBM Tivoli Monitoring Service Pack 6.3.0.7-TIV-ITM-SP0021.

Earlier this week, IBM addressed phishing vulnerabilities in Operational Decision Manager.

(des)

Don't miss any news – follow us on Facebook, LinkedIn or Mastodon.

This article was originally published in German. It was translated with technical assistance and editorially reviewed before publication.

Beliebte Bestenlisten

Alle Angebote
Newsletter heise-Bot heise-Bot Push Nachrichten Push Push-Nachrichten