CVE-2023-30990

Description

IBM i 7.2, 7.3, 7.4, and 7.5 could allow a remote attacker to execute CL commands as QUSER, caused by an exploitation of DDM architecture. IBM X-Force ID: 254036.

CVSS breakdown

CVSS 3.1

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

Low

Integrity

Low

Availability

High

Affected products

ibm / i7.2, 7.3, 7.4, 7.5 – 7.2, 7.3, 7.4, 7.5

References

MISChttps://www.ibm.com/support/pages/node/7008573
MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/254036