June 30, 2025
Proactive Defense: The Importance of Incident Response Planning in Cybersecurity
Multiple F5 BIG-IP Products Vulnerabilities
May 12, 2025Mirai Botnet aka Katana – Active IOCs
May 12, 2025Multiple F5 BIG-IP Products Vulnerabilities
May 12, 2025Mirai Botnet aka Katana – Active IOCs
May 12, 2025
Severity
Medium
Analysis Summary
CVE-2025-1329 CVSS:7.8
IBM CICS TX Standard and IBM CICS TX Advanced could allow a local user to execute arbitrary code on the system due to failure to handle DNS return requests by the gethostbyaddr function.
CVE-2025-1330 CVSS:7.8
IBM CICS TX Standard and IBM CICS TX could allow a local user to execute arbitrary code on the system due to failure to handle DNS return requests by the gethostbyname function.
CVE-2025-1331 CVSS:7.8
IBM CICS TX Standard and IBM CICS TX Advanced could allow a local user to execute arbitrary code on the system due to the use of unsafe use of the gets function.
Impact
- Code Execution
Indicators of Compromise
CVE
CVE-2025-1329
CVE-2025-1330
CVE-2025-1331
Affected Vendors
- IBM
Affected Products
- IBM CICS TX - 10.1
- IBM CICS TX - 11.1
Remediation
Refer to IBM Security Advisory for patch, upgrade or suggested workaround information.