PT-2025-6711 · Ibm · Ibm I
Published
2025-02-14
·
Updated
2025-02-14
·
CVE-2024-52895
CVSS v3.1
6.5
Medium
| Vector | AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
IBM i versions 7.4 through 7.5
Description
A database access denial of service can occur due to a bypass of a database capabilities restriction check. This allows a privileged bad actor to remove or impact database infrastructure files, resulting in incorrect behavior of software products that rely on the database.
Recommendations
For IBM i version 7.4, update to a version that includes a fix for this issue.
For IBM i version 7.5, update to a version that includes a fix for this issue.
As a temporary workaround, consider restricting access to database infrastructure files to minimize the risk of exploitation.
Fix
DoS
Improper Check for Exceptional Conditions
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Ibm I