Lucene search

[email protected]NVD:CVE-2023-26286

HistoryApr 26, 2023 - 12:15 p.m.

CVE-2023-26286

2023-04-2612:15:09

[email protected]

web.nvd.nist.gov

ibm aix

vios

local user

command execution

vulnerability

ibm x-force

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

8.2 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

JSON

IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the AIX runtime services library to execute arbitrary commands. IBM X-Force ID: 248421.

Affected configurations

NVD

Node

ibmviosMatch3.1

ibmaixMatch7.1

ibmaixMatch7.2

ibmaixMatch7.3

References

exchange.xforce.ibmcloud.com/vulnerabilities/248421

www.ibm.com/support/pages/node/6983236

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

8.2 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

JSON

Related for NVD:CVE-2023-26286

cve1 aix1 ibm1 nessus4 prion1 talos1 cvelist1 talosblog1