March 11, 2025
Proactive Defense: The Importance of Incident Response Planning in Cybersecurity
Rewterz Threat Advisory – Multiple IBM Products Vulnerabilities
December 14, 2023Rewterz Threat Alert – A New PikaBot Malware – Active IOCs
December 15, 2023Rewterz Threat Advisory – Multiple IBM Products Vulnerabilities
December 14, 2023Rewterz Threat Alert – A New PikaBot Malware – Active IOCs
December 15, 2023
Severity
High
Analysis Summary
CVE-2023-45174 CVSS:8.4
IBM AIX 7.2, 7.3, and VIOS 3.1 could allow a privileged local user to exploit a vulnerability in the qdaemon command to escalate privileges or cause a denial of service.
CVE-2023-45166 CVSS:8.4
IBM AIX 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the piodmgrsu command to obtain elevated privileges.
CVE-2023-45170 CVSS:8.4
IBM AIX 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the piobe command to escalate privileges or cause a denial of service.
Impact
- Privileges Escalation
Indicators Of Compromise
CVE
- CVE-2023-45174
- CVE-2023-45166
- CVE-2023-45170
Affected Vendors
IBM
Affected Products
- IBM AIX 7.2
- IBM VIOS 3.1
- IBM AIX 7.3
Remediation
Refer to IBM Security Advisory for patch, upgrade, or suggested workaround information.