CVE-2022-41290

Description

IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the rm_rlcache_file command to obtain root privileges. IBM X-Force ID: 236690.

CVSS breakdown

CVSS 3.1

Attack Vector

Local

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Affected products

ibm / aix7.1, 7.2, 7.3, VIOS 3.1 – 7.1, 7.2, 7.3, VIOS 3.1

References

MISChttps://www.ibm.com/support/pages/node/6847917
MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/236690