CVE-2025-1330

Summary

IBM CICS TX Standard 11.1 and IBM CICS TX Advanced 10.1 and 11.1  could allow a local user to execute arbitrary code on the system due to failure to handle DNS return requests by the gethostbyname function.

Affected Software

VendorProductVersion RangeStatus
IBMCICS TX Standard11.1affected
IBMCICS TX Advanced10.1affected
IBMCICS TX Advanced11.1affected

Weaknesses

  • CWE-787: CWE-787 Out-of-bounds Write

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References