PT-2024-21786 · Ibm · Ibm Aix+1
Christian Kohlschuetter
·
Published
2024-05-06
·
Updated
2025-08-18
·
CVE-2024-27273
CVSS v3.1
8.1
High
| Vector | AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
IBM AIX versions 7.2 through 7.3
VIOS versions 3.1 through 4.1
Description
The Unix domain datagram socket implementation in IBM AIX could potentially expose applications using Unix domain datagram sockets with the
SO PEERID operation, which may lead to privilege escalation.Recommendations
For IBM AIX versions 7.2 through 7.3, consider disabling the use of Unix domain datagram sockets with the
SO PEERID operation until a patch is available.
For VIOS versions 3.1 through 4.1, consider disabling the use of Unix domain datagram sockets with the SO PEERID operation until a patch is available.
At the moment, there is no information about a newer version that contains a fix for this vulnerability.LPE
Incorrect Privilege Assignment
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Ibm Aix
Vios