Local User Exploitation in IBM AIX TCP/IP Kernel Extension
CVE-2024-52906

5.5MEDIUM

Key Information:

Vendor
IBM
Status
Vendor
CVE Published:
25 December 2024

Badges

📰 News Worthy

Summary

IBM AIX versions 7.2, 7.3, and Virtual I/O Server (VIOS) versions 3.1 and 4.1 are susceptible to a vulnerability that can be exploited by local users. This issue resides within the TCP/IP kernel extension, which could allow a non-privileged user to disrupt normal system operations. If exploited, this vulnerability can result in a denial of service, hindering system availability and performance.

Affected Version(s)

AIX 7.2, 7.3, VIOS 3.1, 4.1

Get notified when SecurityVulnerability.io launches alerting 🔔

News Articles

IBM AIX Vulnerability Let Attackers Trigger DoS Condition

IBM has reported vulnerabilities in its AIX operating system that could allow attackers to cause a Denial of Service (DoS) condition.

References

CVSS V3.1

Score:
5.5
Severity:
MEDIUM
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • 📰

    First article discovered by CybersecurityNews

  • Vulnerability published

  • Vulnerability Reserved

.
🍪 This website uses cookies, like every other website on the internet 😕 By using our website, you consent to the use of cookies.