Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
IBM i privilege escalation
Vulnerability Description
IBM i 7.2, 7.3, 7.4, and 7.5 contains a local privilege escalation vulnerability caused by an insufficient authority requirement. A local user without administrator privilege can configure a physical file trigger to execute with the privileges of a user socially engineered to access the target file. The correction is to require administrator privilege to configure trigger support.
CVSS Information
CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
特权授予不正确
Vulnerability Title
IBM i 权限许可和访问控制问题漏洞
Vulnerability Description
IBM i是美国国际商业机器(IBM)公司的一套运行在IBM Power Systems和IBM PureSystems中的操作系统。 IBM i 7.2、7.3、7.4 和 7.5版本存在权限许可和访问控制问题漏洞,该漏洞源于权限管理不足,没有管理员权限的本地用户可以配置物理文件触发器导致本地特权提升。
CVSS Information
N/A
Vulnerability Type
N/A