Lucene search
IbmCVELIST:CVE-2023-38280HistoryOct 16, 2023 - 1:03 a.m.
CVE-2023-38280 IBM Power HMC privilege escalation
2023-10-1601:03:27
ibm
www.cve.org
1
ibm
power
hmc
privilege escalation
cve-2023-38280
x-force id 260740
CVSS3
8.4
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
8.1
Confidence
High
EPSS
0
Percentile
5.1%
IBM HMC (Hardware Management Console) 10.1.1010.0 and 10.2.1030.0 could allow a local user to escalate their privileges to root access on a restricted shell. IBM X-Force ID: 260740.
CNA Affected
[
{
"defaultStatus": "unaffected",
"product": "Power HMC",
"vendor": "IBM",
"versions": [
{
"status": "affected",
"version": "10.1.1010.0, 10.2.1030.0"
}
]
}
]Related
vulnrichment
vulnrichment
CVE-2023-38280 IBM Power HMC privilege escalation
2023-10-16 01:03:27
prion
prion
Code injection
2023-10-16 02:15:00
ibm
ibm
Security Bulletin: Vulnerability in sed ( CVE-2023-38280) affects Power HMC
2023-10-06 13:29:21
cve
cve
CVE-2023-38280
2023-10-16 02:15:47
nvd
nvd
CVE-2023-38280
2023-10-16 02:15:47
CVSS3
8.4
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
8.1
Confidence
High
EPSS
0
Percentile
5.1%
Related for CVELIST:CVE-2023-38280