4 matches found
CVE-2023-40371
IBM AIX 7.2, 7.3, VIOS 3.1's OpenSSH implementation could allow a non-privileged local user to access files outside of those allowed due to improper access controls. IBM X-Force ID: 263476...
CVE-2023-40371
CVE-2023-40371 affects IBM AIX 7.2, 7.3 and VIOS 3.1 via OpenSSH, allowing a non-privileged local user to access files outside allowed boundaries due to improper access controls. The IBM advisory (openssh_fix15) lists fixed interim packages: openssh.base (versions 8.1.102.2106 and 9.2.112.2000) w...
Security Bulletin: AIX is vulnerable to unauthorized file access and arbitrary code execution due to OpenSSH (CVE-2023-40371 and CVE-2023-38408)
Summary Vulnerabilities in AIX's OpenSSH could allow a non-privileged local user file access outside of those allowed CVE-2023-40371 or allow a remote attacker to execute arbitrary code CVE-2023-38408. OpenSSH is used by AIX for remote login. Vulnerability Details CVEID:CVE-2023-40371 DESCRIPTION...
AIX is vulnerable to unauthorized file access and arbitrary code execution due to OpenSSH
IBM SECURITY ADVISORY First Issued: Wed Aug 23 08:36:37 CDT 2023 The most recent version of this document is available here: https://aix.software.ibm.com/aix/efixes/security/opensshadvisory15.asc Security Bulletin: AIX is vulnerable to unauthorized file access and arbitrary code execution due to...