Vulnerability Database

317,019

Total vulnerabilities in the database

CVE-2015-5003

The portal in IBM Tivoli Monitoring (ITM) 6.2.2 through FP9, 6.2.3 through FP5, and 6.3.0 before FP7 allows remote authenticated users to execute arbitrary commands by leveraging Take Action view authority and providing crafted input.

Published: Jan 3, 2016
Updated: Nov 9, 2025
CVE: CVE-2015-5003
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 8.5
AV:N/AC:M/Au:S/C:C/I:C/A:C

CWEs:

CWE-77

OWASP TOP 10:

A1 - Injection

Affected Software
References

Software	From	Fixed in
ibm / tivoli_monitoring	6.3.0	6.3.0.x
ibm / tivoli_monitoring	6.2.3	6.2.3.x
ibm / tivoli_monitoring	6.2.2	6.2.2.x

http://www-01.ibm.com/support/docview.wss?uid=swg1IV77742
http://www-01.ibm.com/support/docview.wss?uid=swg21970361
http://www.securitytracker.com/id/1034924

Deep Security Visibility Without the Complexity

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.

No setup fees
5-min deployment
Cancel anytime

Book a Demo