IBM Tivoli Monitoring Portal v6 could allow a local (network adjacent) attacker to execute arbitrary commands on the system, when default client-server default communications, HTTP, are being used. IBM X-Force ID: 123493.
[
{
"product": "Tivoli Monitoring V6",
"vendor": "IBM",
"versions": [
{
"status": "affected",
"version": "6.2.3.5"
},
{
"status": "affected",
"version": "6.2.2.9"
},
{
"status": "affected",
"version": "6.3.0.7"
}
]
}
]