DarkGate Malware – Active IOCs
April 29, 2024Software Developers Tricked into Installing Malware by False npm Packages – Active IOCs
April 29, 2024DarkGate Malware – Active IOCs
April 29, 2024Software Developers Tricked into Installing Malware by False npm Packages – Active IOCs
April 29, 2024Severity
High
Analysis Summary
CVE-2024-25050
IBM i 7.2, 7.3, 7.4, 7.5 and IBM Rational Development Studio for i 7.2, 7.3, 7.4, 7.5 networking and compiler infrastructure could allow a local user to gain elevated privileges due to an unqualified library call. A malicious actor could cause user-controlled code to run with administrator privileges.
Impact
- Privilege Escalation
Indicators of Compromise
CVE
- CVE-2024-25050
Affected Vendors
Affected Products
- IBM i 7.2
- IBM i 7.3
- IBM i 7.4
- IBM i 7.5
- IBM Rational Development Studio for i 7.2
- IBM Rational Development Studio for i 7.3
- IBM Rational Development Studio for i 7.4
- IBM Rational Development Studio for i 7.5
Remediation
Refer to IBM Security Advisory for patch, upgrade or suggested workaround information.