CVE Vulnerabilities

CVE-2025-1331

Use of Inherently Dangerous Function

Published: May 08, 2025 | Modified: Jun 05, 2025
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
RedHat/V2
RedHat/V3
Ubuntu

IBM CICS TX Standard 11.1 and IBM CICS TX Advanced 10.1 and 11.1 could allow a local user to execute arbitrary code on the system due to the use of unsafe use of the gets function.

Weakness

The product calls a function that can never be guaranteed to work safely.

Affected Software

Name Vendor Start Version End Version
Cics_tx Ibm 11.1.0.0 (including) 11.1.0.0 (including)
Cics_tx Ibm 11.1.0.0-interim_fix_1 (including) 11.1.0.0-interim_fix_1 (including)
Cics_tx Ibm 11.1.0.0-interim_fix_10 (including) 11.1.0.0-interim_fix_10 (including)
Cics_tx Ibm 11.1.0.0-interim_fix_11 (including) 11.1.0.0-interim_fix_11 (including)
Cics_tx Ibm 11.1.0.0-interim_fix_12 (including) 11.1.0.0-interim_fix_12 (including)
Cics_tx Ibm 11.1.0.0-interim_fix_13 (including) 11.1.0.0-interim_fix_13 (including)
Cics_tx Ibm 11.1.0.0-interim_fix_14 (including) 11.1.0.0-interim_fix_14 (including)
Cics_tx Ibm 11.1.0.0-interim_fix_15 (including) 11.1.0.0-interim_fix_15 (including)
Cics_tx Ibm 11.1.0.0-interim_fix_16 (including) 11.1.0.0-interim_fix_16 (including)
Cics_tx Ibm 11.1.0.0-interim_fix_17 (including) 11.1.0.0-interim_fix_17 (including)
Cics_tx Ibm 11.1.0.0-interim_fix_18 (including) 11.1.0.0-interim_fix_18 (including)
Cics_tx Ibm 11.1.0.0-interim_fix_19 (including) 11.1.0.0-interim_fix_19 (including)
Cics_tx Ibm 11.1.0.0-interim_fix_2 (including) 11.1.0.0-interim_fix_2 (including)
Cics_tx Ibm 11.1.0.0-interim_fix_20 (including) 11.1.0.0-interim_fix_20 (including)
Cics_tx Ibm 11.1.0.0-interim_fix_21 (including) 11.1.0.0-interim_fix_21 (including)
Cics_tx Ibm 11.1.0.0-interim_fix_22 (including) 11.1.0.0-interim_fix_22 (including)
Cics_tx Ibm 11.1.0.0-interim_fix_23 (including) 11.1.0.0-interim_fix_23 (including)
Cics_tx Ibm 11.1.0.0-interim_fix_24 (including) 11.1.0.0-interim_fix_24 (including)
Cics_tx Ibm 11.1.0.0-interim_fix_3 (including) 11.1.0.0-interim_fix_3 (including)
Cics_tx Ibm 11.1.0.0-interim_fix_4 (including) 11.1.0.0-interim_fix_4 (including)
Cics_tx Ibm 11.1.0.0-interim_fix_5 (including) 11.1.0.0-interim_fix_5 (including)
Cics_tx Ibm 11.1.0.0-interim_fix_6 (including) 11.1.0.0-interim_fix_6 (including)
Cics_tx Ibm 11.1.0.0-interim_fix_7 (including) 11.1.0.0-interim_fix_7 (including)
Cics_tx Ibm 11.1.0.0-interim_fix_8 (including) 11.1.0.0-interim_fix_8 (including)
Cics_tx Ibm 11.1.0.0-interim_fix_9 (including) 11.1.0.0-interim_fix_9 (including)

Potential Mitigations

References