Detections
Analytics
AIX 7.3 TL 2 : kernel (IJ50934)
high Nessus Plugin ID 195306
Language:
Synopsis
The remote AIX host is missing a security patch.Description
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-27273 IBM AIX's Unix domain datagram socket implementation could potentially expose applications using Unix domain datagram sockets with SO_PEERID operation and may lead to privilege escalation.Solution
Install the appropriate interim fix.See Also
https://aix.software.ibm.com/aix/efixes/security/kernel_advisory7.asc
Plugin Details
Severity: High
ID: 195306
File Name: aix_IJ50934.nasl
Version: 1.0
Type: local
Family: AIX Local Security Checks
Published: 5/10/2024
Updated: 5/10/2024
Supported Sensors: Nessus
Risk Information
VPR
Risk Factor: High
Score: 7.3
Vulnerability Information
CPE: cpe:/o:ibm:aix:7.3
Required KB Items: Host/AIX/lslpp, Host/local_checks_enabled, Host/AIX/version
Patch Publication Date: 5/6/2024
Vulnerability Publication Date: 5/6/2024
Reference Information
CVE: CVE-2024-27273