CVE-2022-41290

Опубликовано: 23 дек. 2022

Источник: nvd

CVSS3: 8.4

EPSS Низкий

Описание

IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the rm_rlcache_file command to obtain root privileges. IBM X-Force ID: 236690.

Ссылки

https://exchange.xforce.ibmcloud.com/vulnerabilities/236690
VDB Entry
Vendor Advisory
https://www.ibm.com/support/pages/node/6847917
Patch
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/236690
VDB Entry
Vendor Advisory
https://www.ibm.com/support/pages/node/6847917
Patch
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:ibm:vios:3.1:*:*:*:*:*:*:*

cpe:2.3:o:ibm:aix:7.1:*:*:*:*:*:*:*

cpe:2.3:o:ibm:aix:7.2:*:*:*:*:*:*:*

cpe:2.3:o:ibm:aix:7.3:*:*:*:*:*:*:*

EPSS

Процентиль: 29%

0.00104

Низкий

8.4 High

CVSS3

Дефекты

CWE-250

CWE-269

Связанные уязвимости

GHSA-4jcr-vf56-7rjc