CVE-2025-3356
Published: 30 October 2025
Description
Adversaries may exploit software vulnerabilities that can cause an application or system to crash and deny availability to users.
Security Summary
CVE-2025-3356 is a directory traversal vulnerability (CWE-22) affecting IBM Tivoli Monitoring versions 6.3.0.7 through 6.3.0.7 Service Pack 21. It enables a remote attacker to access files outside the intended directory by sending a specially crafted URL request containing "dot dot" sequences (/../). The vulnerability has a CVSS v3.1 base score of 8.6 (AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H), rated as High severity due to its potential for significant impact.
A remote, unauthenticated attacker can exploit this vulnerability over the network with low complexity and no user interaction required. Successful exploitation allows the attacker to view arbitrary files for limited confidentiality loss, overwrite or append to arbitrary files for limited integrity impact, and potentially cause high availability disruption, such as denial of service through file manipulation.
IBM has published an advisory at https://www.ibm.com/support/pages/node/7249694 providing details on the vulnerability, affected versions, and recommended mitigations or patches. Security practitioners should consult this resource for specific remediation steps.
Details
- CWE(s)
Affected Products
MITRE ATT&CK Enterprise Techniques
Why these techniques?
Directory traversal in public-facing IBM Tivoli Monitoring enables remote unauthenticated exploitation (T1190) for arbitrary file read/write (confidentiality/integrity impacts) and high availability disruption via file manipulation (T1499.004).