CVE-2024-31879

Description

IBM i 7.2, 7.3, and 7.4 could allow a remote attacker to execute arbitrary code leading to a denial of service of network ports on the system, caused by the deserialization of untrusted data. IBM X-Force ID: 287539.

CVSS breakdown

CVSS 3.1

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

None

Availability

None

Affected products

ibm / i7.2 – 7.2
ibm / i7.3 – 7.3
ibm / i7.4 – 7.4

References

MISChttps://www.ibm.com/support/pages/node/7154380
MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/287539