CVE-2026-2311
MEDIUM
6,4
Source: [email protected]
Attack Vector: network
Attack Complexity: high
Privileges Required: high
User Interaction: required
Scope: unchanged
Confidentiality: high
Integrity: high
Availability: high
Description
AI Translation Available
IBM i 7.6, 7.5, 7.4, 7.3, and 7.2 s vulnerable to privilege escalation caused by an invalid IBM i Web Administration GUI authorization check. A malicious actor could cause user-controlled code to run with administrator privilege.
EPSS (Exploit Prediction Scoring System)
Trend Analysis
EPSS (Exploit Prediction Scoring System)
Prevede la probabilità di sfruttamento basata su intelligence sulle minacce e sulle caratteristiche della vulnerabilità.
EPSS Score
0,0004
Percentile
0,1th
Updated
EPSS Score Trend (Last 2 Days)
284
Improper Access Control
IncompleteCommon Consequences
Security Scopes Affected:
Other
Potential Impacts:
Varies By Context
Applicable Platforms
Technologies:
ICS/OT, Not Technology-Specific, Web Based
Operating System
I by Ibm
CPE Identifier
View Detailed Analysis
cpe:2.3:o:ibm:i:7.4:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System
I by Ibm
CPE Identifier
View Detailed Analysis
cpe:2.3:o:ibm:i:7.3:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System
I by Ibm
CPE Identifier
View Detailed Analysis
cpe:2.3:o:ibm:i:7.6:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System
I by Ibm
CPE Identifier
View Detailed Analysis
cpe:2.3:o:ibm:i:7.2:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System
I by Ibm
CPE Identifier
View Detailed Analysis
cpe:2.3:o:ibm:i:7.5:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
https://www.ibm.com/support/pages/node/7269560