Lucene search

IBME351389FE3FCFAB8B7EFA0AD3BF24C0ABC116C812BC3F27095BB85C6539606B0

HistoryOct 03, 2023 - 5:20 p.m.

Security Bulletin: IBM i is vulnerable to a local privilege escalation (CVE-2023-40375).

2023-10-0317:20:37

www.ibm.com

ibm i

local privilege escalation

vulnerability

fix

ptf

7.5

7.4

7.3

7.2

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

0.0004 Low

EPSS

Percentile

5.1%

JSON

Summary

IBM i is vulnerable to a local privilege escalation due to a flaw in the base operating system code related to the Integrated application server for IBM i as described in the vulnerability details section. The vulnerability exists even when the Integrated application server is not configured or active on the system. IBM i has addressed the vulnerability with a fix as described in the remediation/fixes section.

Vulnerability Details

CVEID:CVE-2023-40375
**DESCRIPTION:**Integrated application server for IBM i contains a local privilege escalation vulnerability. A malicious actor with command line access to the host operating system can elevate privileges to gain root access to the host operating system.
CVSS Base score: 7.4
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/263580 for the current score.
CVSS Vector: (CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H)

Affected Products and Versions

Affected Product(s)	Version(s)
IBM i	7.5
IBM i	7.4
IBM i	7.3
IBM i	7.2

Remediation/Fixes

The issue can be fixed by applying a PTF to IBM i. IBM i releases 7.5, 7.4, 7.3, and 7.2 will be fixed.

The IBM i PTF number for 5770-SS1 contains the fix for the vulnerability.

IBM i Release	5770-SS1	PTF Download Link
7.5	SI84247	<https://www.ibm.com/support/pages/ptf/SI84247>
7.4	SI84248	<https://www.ibm.com/support/pages/ptf/SI84248>
7.3	SI84249	<https://www.ibm.com/support/pages/ptf/SI84249>
7.2	SI84250	<https://www.ibm.com/support/pages/ptf/SI84250>

<https://www.ibm.com/support/fixcentral>

Important note: IBM recommends that all users running unsupported versions of affected products upgrade to supported and fixed version of affected products.

Workarounds and Mitigations

None

Affected configurations

Vulners

Node

ibmibm_i_7.5_preventative_service_planningMatch7.2.0

ibmibm_i_7.5_preventative_service_planningMatch7.3.0

ibmibm_i_7.5_preventative_service_planningMatch7.5.0

ibmibm_i_7.5_preventative_service_planningMatch7.4.0

ibmiMatch7.5.0

ibmiMatch7.4.0

ibmiMatch7.3.0

ibmiMatch7.2.0

CPENameOperatorVersion
ibm i 7.2 preventative service planningeq7.2.0
ibm i 7.3 preventative service planningeq7.3.0
ibm i 7.5 preventative service planningeq7.5.0
ibm i 7.4 preventative service planningeq7.4.0
ibm ieq7.5.0
ibm ieq7.4.0
ibm ieq7.3.0
ibm ieq7.2.0

Name	Operator	Version
ibm i 7.2 preventative service planning	eq	7.2.0
ibm i 7.3 preventative service planning	eq	7.3.0
ibm i 7.5 preventative service planning	eq	7.5.0
ibm i 7.4 preventative service planning	eq	7.4.0
ibm i	eq	7.5.0
ibm i	eq	7.4.0
ibm i	eq	7.3.0
ibm i	eq	7.2.0

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

0.0004 Low

EPSS

Percentile

5.1%

JSON

Related for E351389FE3FCFAB8B7EFA0AD3BF24C0ABC116C812BC3F27095BB85C6539606B0