CVE-2017-1635

HIGH

IBM Tivoli Monitoring V6 <6.2.2.x - Use After Free

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 2 public exploits for CVE-2017-1635. PoCs published by bcdannyboy, emcalv.

AI-analyzed exploit summary This PoC exploits CVE-2017-1635, a vulnerability in IBM Tivoli Storage Manager, by injecting JavaScript payloads via crafted HTTP requests. It supports multiple exploit strings and logging capabilities.

Description

IBM Tivoli Monitoring V6 6.2.2.x could allow a remote attacker to execute arbitrary code on the system, caused by a use-after-free error. A remote attacker could exploit this vulnerability to execute arbitrary code on the system or cause the application to crash. IBM X-Force ID: 133243.

Exploits (2)

nomisec WORKING POC 1 stars
by bcdannyboy · poc
https://github.com/bcdannyboy/cve-2017-1635-PoC

This PoC exploits CVE-2017-1635, a vulnerability in IBM Tivoli Storage Manager, by injecting JavaScript payloads via crafted HTTP requests. It supports multiple exploit strings and logging capabilities.

Classification
Working Poc 90%
Attack Type
Xss
Complexity
Moderate
Reliability
Reliable
Target: IBM Tivoli Storage Manager
No auth needed
Prerequisites: Network access to the target · JavaScript payload
devstral-2 · analyzed Feb 16, 2026 Full analysis →
nomisec STUB 1 stars
by emcalv · poc
https://github.com/emcalv/tivoli-poc

The PoC attempts to exploit a use-after-free vulnerability in IBM Tivoli Monitoring's KDH component via crafted HTTP requests. However, the payload only includes XSS-like strings and lacks actual exploit code for RCE.

Classification
Stub 60%
Attack Type
Other
Complexity
Trivial
Reliability
Theoretical
Target: IBM Tivoli Monitoring Basic Services (KGL,KAX) 6.2.2.0 through 6.2.2.9
No auth needed
Prerequisites: Network access to the target's internal web server on port 1920
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3
Core References
Issue Tracking, VDB Entry, Vendor Advisory x_refsource_misc
https://exchange.xforce.ibmcloud.com/vulnerabilities/133243
Issue Tracking, Vendor Advisory x_refsource_confirm
http://www.ibm.com/support/docview.wss?uid=swg22010554
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/101905

Scores

CVSS v3 8.0
EPSS 0.0309
EPSS Percentile 86.1%
Attack Vector ADJACENT_NETWORK
CVSS:3.0/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-416
Status published
Products (18)
IBM/Tivoli Monitoring V6 6.2.2
IBM/Tivoli Monitoring V6 6.2.2.2
IBM/Tivoli Monitoring V6 6.2.2.3
IBM/Tivoli Monitoring V6 6.2.2.4
IBM/Tivoli Monitoring V6 6.2.2.5
IBM/Tivoli Monitoring V6 6.2.2.6
IBM/Tivoli Monitoring V6 6.2.2.7
IBM/Tivoli Monitoring V6 6.2.2.8
IBM/Tivoli Monitoring V6 6.2.2.9
ibm/tivoli_monitoring 6.2.2
... and 8 more
Published Dec 13, 2017
Tracked Since Feb 18, 2026