IBM Tivoli Monitoring
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in IBM Tivoli Monitoring.
By the Year
In 2026 there have been 0 vulnerabilities in IBM Tivoli Monitoring. Last year, in 2025 Tivoli Monitoring had 5 security vulnerabilities published. Right now, Tivoli Monitoring is on track to have less security vulnerabilities in 2026 than it did last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2026 | 0 | 0.00 |
| 2025 | 5 | 9.10 |
| 2024 | 0 | 0.00 |
| 2023 | 0 | 0.00 |
| 2022 | 0 | 0.00 |
| 2021 | 0 | 0.00 |
| 2020 | 2 | 7.25 |
It may take a day or so for new Tivoli Monitoring vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent IBM Tivoli Monitoring Security Vulnerabilities
Path Traversal in IBM Tivoli Monitoring 6.3.0.7 (SP21) via URL
CVE-2025-3356
8.6 - High
- October 30, 2025
IBM Tivoli Monitoring 6.3.0.7 through 6.3.0.7 Service Pack 21 could allow a remote attacker to traverse directories on the system. An attacker could send a specially crafted URL request containing "dot dot" sequences (/../) to view, overwrite, or append to arbitrary files on the system.
Directory traversal
IBM Tivoli Monitoring 6.3.0.7 SP21 Remote Dir Traversal via URL
CVE-2025-3355
7.5 - High
- October 30, 2025
IBM Tivoli Monitoring 6.3.0.7 through 6.3.0.7 Service Pack 21 could allow a remote attacker to traverse directories on the system. An attacker could send a specially crafted URL request containing "dot dot" sequences (/../) to view arbitrary files on the system.
Directory traversal
IBM Tivoli Monitoring 6.3.0.7 SP20 Heap Buffer Overflow
CVE-2025-3354
9.8 - Critical
- August 06, 2025
IBM Tivoli Monitoring 6.3.0.7 through 6.3.0.7 Service Pack 20 is vulnerable to a heap-based buffer overflow, caused by improper bounds checking. A remote attacker could overflow a buffer and execute arbitrary code on the system or cause the server to crash.
Heap-based Buffer Overflow
IBM Tivoli Monitoring 6.3.0.7 SP20 Heap Buffer Overflow
CVE-2025-3320
9.8 - Critical
- August 06, 2025
IBM Tivoli Monitoring 6.3.0.7 through 6.3.0.7 Service Pack 20 is vulnerable to a heap-based buffer overflow, caused by improper bounds checking. A remote attacker could overflow a buffer and execute arbitrary code on the system or cause the server to crash.
Heap-based Buffer Overflow
IBM Tivoli Monitoring 6.3.0.7 SP19: Remote Code Exec via Array Index Validation
CVE-2025-3357
9.8 - Critical
- May 28, 2025
IBM Tivoli Monitoring 6.3.0.7 through 6.3.0.7 Service Pack 19 could allow a remote attacker to execute arbitrary code due to improper validation of an index value of a dynamically allocated array.
Improper Validation of Specified Index, Position, or Offset in Input
IBM Tivoli Monitoring 6.3.0 could allow a local attacker to execute arbitrary code on the system
CVE-2020-4311
7 - High
- April 23, 2020
IBM Tivoli Monitoring 6.3.0 could allow a local attacker to execute arbitrary code on the system. By placing a specially crafted file, an attacker could exploit this vulnerability to load other DLL files located in the same directory and execute arbitrary code on the system. IBM X-Force ID: 177083.
Incorrect Permission Assignment for Critical Resource
IBM Tivoli Monitoring Service 6.3.0.7.3 through 6.3.0.7.10 could
CVE-2019-4592
7.5 - High
- February 13, 2020
IBM Tivoli Monitoring Service 6.3.0.7.3 through 6.3.0.7.10 could allow an unauthorized user to access and modify operation aspects of the ITM monitoring server possibly leading to an effective denial of service or disabling of the monitoring server. IBM X-Force ID: 167647.
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for IBM Tivoli Monitoring or by IBM? Click the Watch button to subscribe.
