Primary

Context

IBM i Authentication and Authorization Vulnerability in IBM i Netserver

Vulnerability

A vulnerability exists in IBM i versions 7.2, 7.3, 7.4, 7.5, and 7.6, allowing authentication and authorization attacks. This issue arises from improper validation in IBM i Netserver, which could enable a malicious actor to exploit brute force authentication methods or bypass authority restrictions to gain unauthorized access to the server.

Impact

Exploitation of this vulnerability could lead to unauthorized access on the server by bypassing authentication and authorization mechanisms.

Remediation

Users can apply a PTF to address this vulnerability. The specific PTF numbers for each IBM i release are available on the IBM Support website.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

4.5

impact

5.0

exploitability

4.9

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

4.5

impact

5.0

exploitability

4.9

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

IBM i Authentication and Authorization Vulnerability in IBM i Netserver

Vulnerability

Impact

Remediation

Affected Products

IBM i

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating