High severity8.5NVD Advisory· Published Jan 3, 2016· Updated May 6, 2026

CVE-2015-5003

Description

The portal in IBM Tivoli Monitoring (ITM) 6.2.2 through FP9, 6.2.3 through FP5, and 6.3.0 before FP7 allows remote authenticated users to execute arbitrary commands by leveraging Take Action view authority and providing crafted input.

Affected products

IBM/Tivoli Monitoring3 versions
cpe:2.3:a:ibm:tivoli_monitoring:6.2.2:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:a:ibm:tivoli_monitoring:6.2.2:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:tivoli_monitoring:6.2.3:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:tivoli_monitoring:6.3.0:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www-01.ibm.com/support/docview.wssnvdVendor Advisory
www-01.ibm.com/support/docview.wssnvd
www.securitytracker.com/id/1034924nvd

News mentions

No linked articles in our index yet.

cvss	0.552
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000