CVE-2014-0930 — IBM Vios vulnerability

3 documents3 sources

Severity

4.7MEDIUMNVD

EPSS

0.1%

top 70.34%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

IBM AIX IBM Vios

Timeline

PublishedMay 8

Latest updateMay 13

Description

The ptrace system call in IBM AIX 5.3, 6.1, and 7.1, and VIOS 2.2.x, allows local users to cause a denial of service (system crash) or obtain sensitive information from kernel memory via a crafted PT_LDINFO operation.

CVSS vector

AV:L/AC:M/C:N/I:N/A:CExploitability: 3.4 | Impact: 6.9

Affected Packages2 packages

▶NVDibm/vios10 versions+9

▶NVDibm/aix5.3, 6.1, 7.1+2

🔴Vulnerability Details

GHSA

GHSA-52vr-h4mx-5468: The ptrace system call in IBM AIX 5↗2022-05-13

▶

CVEList

CVE-2014-0930: The ptrace system call in IBM AIX 5↗2014-05-08

▶