IBM i Vulnerability Could Lead to Arbitrary Code Execution and Denial of Service

CVE-2024-31879

7.5HIGH

Key Information

Vendor: IBM
Status: I
Vendor: Published:; 18 May 2024

Summary

IBM i 7.2, 7.3, and 7.4 could allow a remote attacker to execute arbitrary code leading to a denial of service of network ports on the system, caused by the deserialization of untrusted data. IBM X-Force ID: 287539.

Affected Version(s)

i = 7.2, 7.3, 7.4

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

HIGH

Integrity:

NONE

Availability:

NONE

Attack Complexity:

LOW

Privileges Required:

NONE

User Interaction:

NONE

Scope:

UNCHANGED

Timeline

Vulnerability published.
May 18, 2024
Vulnerability Reserved.
Apr 7, 2024

Collectors

NVD DatabaseMitre Database