Ibm

I

29 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.8

CVE-2024-27264

  • EPSS 0.04%
  • Veröffentlicht 22.05.2024 20:15:09
  • Zuletzt bearbeitet 30.06.2025 18:15:25

IBM Performance Tools for i 7.2, 7.3, 7.4, and 7.5 could allow a local user to gain elevated privileges due to an unqualified library call. A malicious actor could cause user-controlled code to run with administrator privilege. IBM X-Force ID: 284...

7.5

CVE-2024-31879

  • EPSS 0.45%
  • Veröffentlicht 18.05.2024 16:15:47
  • Zuletzt bearbeitet 03.07.2025 20:54:15

IBM i 7.2, 7.3, and 7.4 could allow a remote attacker to execute arbitrary code leading to a denial of service of network ports on the system, caused by the deserialization of untrusted data. IBM X-Force ID: 287539.

7.8

CVE-2024-25050

  • EPSS 0.07%
  • Veröffentlicht 28.04.2024 13:15:08
  • Zuletzt bearbeitet 13.08.2025 13:12:21

IBM i 7.2, 7.3, 7.4, 7.5 and IBM Rational Development Studio for i 7.2, 7.3, 7.4, 7.5 networking and compiler infrastructure could allow a local user to gain elevated privileges due to an unqualified library call. A malicious actor could cause user-c...

7.8

CVE-2024-22346

  • EPSS 0.04%
  • Veröffentlicht 14.03.2024 19:15:49
  • Zuletzt bearbeitet 21.11.2024 08:56:05

Db2 for IBM i 7.2, 7.3, 7.4, and 7.5 infrastructure could allow a local user to gain elevated privileges due to an unqualified library call. A malicious actor could cause user-controlled code to run with administrator privilege. IBM X-Force ID: 280...

5.3

CVE-2023-47741

  • EPSS 0.04%
  • Veröffentlicht 18.12.2023 20:15:08
  • Zuletzt bearbeitet 21.11.2024 08:30:44

IBM i 7.3, 7.4, 7.5, IBM i Db2 Mirror for i 7.4 and 7.5 web browser clients may leave clear-text passwords in browser memory that can be viewed using common browser tools before the memory is garbage collected. A malicious actor with access to the v...

5.5

CVE-2023-42006

  • EPSS 0.03%
  • Veröffentlicht 01.12.2023 17:15:07
  • Zuletzt bearbeitet 21.11.2024 08:22:05

IBM Administration Runtime Expert for i 7.2, 7.3, 7.4, and 7.5 could allow a local user to obtain sensitive information caused by improper authority checks. IBM X-Force ID: 265266.

7.8

CVE-2023-30989

  • EPSS 0.03%
  • Veröffentlicht 16.07.2023 23:15:09
  • Zuletzt bearbeitet 21.11.2024 08:01:11

IBM Performance Tools for i 7.2, 7.3, 7.4, and 7.5 contains a local privilege escalation vulnerability. A malicious actor with command line access to the host operating system can elevate privileges to gain all object access to the host operating sy...

7.8

CVE-2023-30988

  • EPSS 0.03%
  • Veröffentlicht 16.07.2023 23:15:09
  • Zuletzt bearbeitet 21.11.2024 08:01:11

The IBM i 7.2, 7.3, 7.4, and 7.5 product Facsimile Support for i contains a local privilege escalation vulnerability. A malicious actor with command line access to the host operating system can elevate privileges to gain root access to the host oper...

9.8

CVE-2023-30990

  • EPSS 0.21%
  • Veröffentlicht 04.07.2023 00:15:09
  • Zuletzt bearbeitet 21.11.2024 08:01:11

IBM i 7.2, 7.3, 7.4, and 7.5 could allow a remote attacker to execute CL commands as QUSER, caused by an exploitation of DDM architecture. IBM X-Force ID: 254036.