CVE-2018-1383 — IBM AIX vulnerability

4 documents4 sources

Severity

9.1CRITICALNVD

EPSS

0.5%

top 33.50%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

IBM AIX

Timeline

PublishedFeb 13

Latest updateMay 13

Description

A software logic bug creates a vulnerability in an AIX 6.1, 7.1, and 7.2 daemon which could allow a user with root privileges on one system, to obtain root access on another machine. IBM X-force ID: 138117.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:HExploitability: 2.3 | Impact: 6.0

Affected Packages2 packages

▶CVEListV5ibm/aix6.1, 7.1, 7.2+2

▶NVDibm/aix19 versions+18

🔴Vulnerability Details

GHSA

GHSA-rf57-qx84-ccpf: A software logic bug creates a vulnerability in an AIX 6↗2022-05-13

▶

CVEList

CVE-2018-1383: A software logic bug creates a vulnerability in an AIX 6↗2018-02-13

▶

💥Exploits & PoCs

Exploit-DB

LibreOffice < 6.0.1 - '=WEBSERVICE' Remote Arbitrary File Disclosure↗2018-02-10

▶