CVE-2014-6141

CWE-2643 documents3 sources
Severity
8.5HIGH
EPSS
0.3%
top 50.25%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
IBM Tivoli Monitoring
Timeline
PublishedFeb 2
Latest updateMay 17

Description

IBM Tivoli Monitoring (ITM) 6.2.0 through FP03, 6.2.1 through FP04, 6.2.2 through FP09, 6.2.3 through FP05, and 6.3.0 before FP04 allows remote authenticated users to bypass intended access restrictions and execute arbitrary commands by leveraging Take Action view authority to modify in-progress commands.

CVSS vector

AV:N/AC:M/C:C/I:C/A:CExploitability: 6.8 | Impact: 10.0

Affected Packages1 packages

NVDibm/tivoli_monitoring33 versions+32

🔴Vulnerability Details

2
GHSA
GHSA-3qcc-hgxf-jmc5: IBM Tivoli Monitoring (ITM) 62022-05-17
CVEList
CVE-2014-6141: IBM Tivoli Monitoring (ITM) 62015-02-02
CVE-2014-6141 (HIGH CVSS 8.5) | IBM Tivoli Monitoring (ITM) 6.2.0 t | cvebase.io