CVE-2024-27273

IBM AIX's Unix domain (AIX 7.2, 7.3, VIOS 3.1, and VIOS 4.1) datagram socket implementation could potentially expose applications using Unix domain datagram sockets with SO_PEERID operation and may lead to privilege escalation. IBM X-Force ID: 284903.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:ibm:vios:3.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:vios:4.1:*:*:*:*:*:*:*
cpe:2.3:o:ibm:aix:7.2:*:*:*:*:*:*:*
cpe:2.3:o:ibm:aix:7.3:*:*:*:*:*:*:*

History

18 Aug 2025, 15:19

Type Values Removed Values Added
CPE cpe:2.3:o:ibm:aix:7.3:*:*:*:*:*:*:*
cpe:2.3:o:ibm:aix:7.2:*:*:*:*:*:*:*
cpe:2.3:a:ibm:vios:4.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:vios:3.1:*:*:*:*:*:*:*
References () https://exchange.xforce.ibmcloud.com/vulnerabilities/284903 - () https://exchange.xforce.ibmcloud.com/vulnerabilities/284903 - Vendor Advisory
References () https://www.ibm.com/support/pages/node/7150297 - () https://www.ibm.com/support/pages/node/7150297 - Vendor Advisory
CWE NVD-CWE-noinfo
First Time Ibm aix
Ibm vios
Ibm

21 Nov 2024, 09:04

Type Values Removed Values Added
References () https://exchange.xforce.ibmcloud.com/vulnerabilities/284903 - () https://exchange.xforce.ibmcloud.com/vulnerabilities/284903 -
References () https://www.ibm.com/support/pages/node/7150297 - () https://www.ibm.com/support/pages/node/7150297 -

08 May 2024, 13:15

Type Values Removed Values Added
Summary
  • (es) La implementación de sockets de datagramas de dominio Unix de IBM AIX (AIX 7.2, 7.3, VIOS 3.1 y VIOS 4.1) podría exponer potencialmente aplicaciones que utilizan sockets de datagramas de dominio Unix con operación SO_PEERID y puede conducir a una escalada de privilegios. ID de IBM X-Force: 284903.

07 May 2024, 21:15

Type Values Removed Values Added
New CVE

Information

Published : 2024-05-07 21:15

Updated : 2025-08-18 15:19


NVD link : CVE-2024-27273

Mitre link : CVE-2024-27273

CVE.ORG link : CVE-2024-27273


JSON object : View

Products Affected

ibm

  • vios
  • aix
CWE
CWE-266

Incorrect Privilege Assignment

NVD-CWE-noinfo