CVE-2025-1330

HIGH 7.8

IBM CICS TX code execution

CVSS Score

7.8

EPSS Score

0.0%

EPSS Percentile

0th

IBM CICS TX Standard 11.1 and IBM CICS TX Advanced 10.1 and 11.1 could allow a local user to execute arbitrary code on the system due to failure to handle DNS return requests by the gethostbyname function.

CWE	CWE-787
Vendor	ibm
Product	cics tx standard
Published	May 8, 2025
Last Updated	Feb 26, 2026

Stay Ahead of the Next One

Get instant alerts for ibm cics tx standard

Be the first to know when new high vulnerabilities affecting ibm cics tx standard are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Attack Vector

Local

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Affected Versions

IBM / CICS TX Standard

11.1

IBM / CICS TX Advanced

10.1 11.1

References

NVD ↗ CVE.org ↗ EPSS Data ↗

ibm.com: https://www.ibm.com/support/pages/node/7232923 ibm.com: https://www.ibm.com/support/pages/node/7232924