CVE-2018-1383

A software logic bug creates a vulnerability in an AIX 6.1, 7.1, and 7.2 daemon which could allow a user with root privileges on one system, to obtain root access on another machine. IBM X-force ID: 138117.

Published: Feb 13, 2018
Updated: Apr 13, 2023
CVE: CVE-2018-1383
Severity: Critical
Exploit:

CVSS v3:

Severity: Critical
Score: 9.1
AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H

CVSS v2:

Severity: High
Score: 9
AV:N/AC:L/Au:S/C:C/I:C/A:C

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
ibm / aix	6.1.3	6.1.3.x
ibm / aix	7.1.2	7.1.2.x
ibm / aix	7.1	7.1.x
ibm / aix	7.2	7.2.x
ibm / aix	6.1.1	6.1.1.x
ibm / aix	6.1	6.1.x
ibm / aix	6.1.2	6.1.2.x
ibm / aix	7.1.1	7.1.1.x
ibm / aix	7.2.2	7.2.2.x
ibm / aix	7.2.1	7.2.1.x
ibm / aix	7.1.5	7.1.5.x
ibm / aix	7.1.4	7.1.4.x
ibm / aix	7.1.3	7.1.3.x
ibm / aix	6.1.4	6.1.4.x
ibm / aix	6.1.5	6.1.5.x
ibm / aix	6.1.6	6.1.6.x
ibm / aix	6.1.7	6.1.7.x
ibm / aix	6.1.8	6.1.8.x
ibm / aix	6.1.9	6.1.9.x

http://aix.software.ibm.com/aix/efixes/security/aixbase_advisory.asc
http://www-01.ibm.com/support/docview.wss?uid=isg3T1026948
http://www.securityfocus.com/bid/102989
http://www.securitytracker.com/id/1040358
https://exchange.xforce.ibmcloud.com/vulnerabilities/138117

Vulnerability Database

289,689

CVE-2018-1383