File Creation Vulnerability in IBM AIX and VIOS Products
CVE-2021-38955

4.4MEDIUM

Key Information:

Vendor
IBM
Status
ViOS
Aix
Vendor
CVE Published:
1 March 2022

Summary

A file creation vulnerability within the audit commands of IBM AIX and VIOS products allows local users with elevated privileges to exploit the system, potentially resulting in a denial of service. This risk could affect system stability and availability, prompting the need for immediate attention to patching and mitigation strategies.

Affected Version(s)

AIX 7.1

AIX 7.2

AIX 7.3

References

https://www.ibm.com/support/pages/node/6560236
x_refsource_CONFIRM
https://exchange.xforce.ibmcloud.com/vulnerabilities/211825
vdb-entryx_refsource_XF

CVSS V3.1

Score:
4.4
Severity:
MEDIUM
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
High
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.