IBM i Access Client Solutions
CVE-2023-45184
6.2MEDIUM
Key Information
- Vendor
- IBM
- Status
- i Access Client Solutions
- Vendor
- Published:
- 14 December 2023
Badges
👾 Exploit Exists🙃 Public PoC
Summary
IBM i Access Client Solutions 1.1.2 through 1.1.4 and 1.1.4.3 through 1.1.9.3 could allow an attacker to obtain a decryption key due to improper authority checks. IBM X-Force ID: 268270.
Affected Version(s)
i Access Client Solutions <= 1.1.4
i Access Client Solutions <= 1.1.9.3
Exploit Proof of Concept (PoC)
PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.
CVSS V3.1
Score:
6.2
Severity:
MEDIUM
Confidentiality:
HIGH
Integrity:
NONE
Availability:
NONE
Attack Complexity:
LOW
Privileges Required:
NONE
User Interaction:
NONE
Scope:
UNCHANGED
Timeline
- 👾
Exploit exists.
Vulnerability published.
Vulnerability Reserved.
Collectors
NVD DatabaseMitre Database1 Proof of Concept(s)