Lucene search
HistoryDec 14, 2023 - 2:15 p.m.
CVE-2023-45185
ibm
access client solutions
remote code execution
improper authority checks
x-force id
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS
0.001
Percentile
18.9%
IBM i Access Client Solutions 1.1.2 through 1.1.4 and 1.1.4.3 through 1.1.9.3 could allow an attacker to execute remote code. Due to improper authority checks the attacker could perform operations on the PC under the user’s authority. IBM X-Force ID: 268273.
Affected configurations
Node
ibmi_access_client_solutionsRange1.1.2–1.1.4
ORibmi_access_client_solutionsRange1.1.4.3–1.1.9.4
| Vendor | Product | Version | CPE |
|---|---|---|---|
| ibm | i_access_client_solutions | * | cpe:2.3:a:ibm:i_access_client_solutions:*:*:*:*:*:*:*:* |
Related
cve
cve
CVE-2023-45185
2023-12-14 14:15:42
prion
prion
Improper access control
2023-12-14 14:15:00
cnvd
cnvd
IBM i License Issues Vulnerabilities
2023-12-18 00:00:00
cvelist
cvelist
CVE-2023-45185 IBM i Access Client Solutions code execution
2023-12-14 14:04:36
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS
0.001
Percentile
18.9%
Related for NVD:CVE-2023-45185