IBM AIX information disclosure | CVE-2023-40371

August 25, 2023

NAME
__________
IBM AIX information disclosure

Platforms Affected:
IBM AIX 7.2
IBM VIOS 3.1
IBM AIX 7.3

Risk Level:
6.2

Exploitability:
Unproven

Consequences:
Obtain Information

DESCRIPTION
__________

IBM AIX 7.2, 7.3, VIOS 3.1’s OpenSSH implementation could allow a non-privileged local user to access files outside of those allowed due to improper access controls. IBM X-Force ID: 263476.

CVSS 3.0 Information
__________

Privileges Required:
None

User Interaction:
None

Scope:
Unchanged

Access Vector:
Local

A considerable amount of time and effort goes into maintaining this website, creating backend automation and creating new features and content for you to make actionable intelligence decisions. Everyone that supports the site helps enable new functionality.

If you like the site, please support us on “Patreon” or “Buy Me A Coffee” using the buttons below

Buy Me A Coffee
Patreon

 To keep up to date follow us on the below channels.

You may have missed

ba4c3582f1eb0293094c9893c51ebedda6262852f2a096b9dba832d04eb735c9

Imperius – Make An Linux Kernel Rootkit Visible Again

September 19, 2024
rasomware

Microsoft Warns of New INC Ransomware Targeting U.S. Healthcare Sector

September 19, 2024
f4eb0a2b6af4b65bcf9a9a936a97d5eba3f80cac880738eec3950401a762e62a

Healthcare’s Diagnosis is Critical: The Cure is Cybersecurity Hygiene

September 19, 2024
git 1

GitLab Patches Critical SAML Authentication Bypass Flaw in CE and EE Editions

September 19, 2024
hkcert

Microsoft Monthly Security Update (Feb 2020)

September 19, 2024