CVE-2025-55114

by Fred · 16/09/2025

The improper order of AUTHORIZED_CTM_IP validation in the Control-M/Agent, where the Control-M/Server IP address is validated only after the SSL/TLS handshake is completed, exposes the Control-M/Agent to vulnerabilities in the SSL/TLS implementation under certain non-default conditions (e.g. CVE-2025-55117 or CVE-2025-55118) or potentially to resource exhaustion.

More information : https://bmcapps.my.site.com/casemgmt/sc_KnowledgeArticle?sfdcid=000441968

CVE-2025-55114

Similar

Recent Posts

Categories

CVE-2025-55114

Share this:

Similar

Recent Posts

Categories

Tags