IBM AIX denial of service
CVE-2023-45173

5.5MEDIUM

Key Information:

Vendor: IBM
Status: AIX
Vendor: CVE Published:; 11 January 2024

Summary

A vulnerability exists in the NFS kernel extension of IBM AIX 7.2, 7.3, and VIOS 3.1 that allows a non-privileged local user to exploit this weakness. Successful exploitation may lead to a denial of service condition, affecting the availability and performance of systems utilizing these platforms. This vulnerability necessitates immediate attention to mitigate potential disruptions and ensure operational integrity.

Affected Version(s)

AIX 7.2, 7.3, VIOS 3.1

References

https://www.ibm.com/support/pages/node/7105282

vendor-advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/267971

vdb-entry

CVSS V3.1

Score:

5.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Jan 11, 2024
Vulnerability Reserved
Oct 5, 2023