CVE-2023-30990 PoC — IBM i 代码注入漏洞

Source

https://github.com/silentsignal/CVE-2023-30990

Associated Vulnerability

Title:IBM i 代码注入漏洞 (CVE-2023-30990)
Description:IBM i是美国国际商业机器（IBM）公司的一套运行在IBM Power Systems和IBM PureSystems中的操作系统。 IBM i 7.2、7.3、7.4 和 7.5版本存在代码注入漏洞，该漏洞源于利用了 DDM 架构，允许远程攻击者以 QUSER 身份执行 CL 命令。

Description

CVE-2023-30990 exploits

Readme

# CVE-2023-30990 exploits

See our blog post for details: https://blog.silentsignal.eu/2025/09/04/Exploit-development-for-IBM-i/

The Python scripts require the ebcdic module: `pip install ebcdic`


### DRDA S38CMD method

```bash
python3 ddm.py <IP> "<CL COMMAND>"
```

### DRDA SQL method

```bash
python3 ddm-bypass-test.py <IP> "<CL COMMAND>"
```

### Simple bindshell with S38CMD method

```bash
./exploit.sh <IP>
```

File Snapshot


 [4.0K]  /data/pocs/c4a08a94e188f138a92cb72b2637bc4a609bbea5
├── [3.4K]  ddm-bypass-test.py
├── [1.1K]  ddm.py
├── [1.4K]  exploit-drda.sh
└── [ 423]  README.md

0 directories, 4 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!