all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Vulnerability Spotlight: Vulnerabilities in IBM AIX could lead to command injection with elevated privileges

Add to bookmarks
April 24, 2023, 4 p.m. | MalBot

Malware Analysis, News and Indicators - Latest topics malware.news

Tim Brown of Cisco Security Advisory EMEA discovered these vulnerabilities and contributed to this blog post.

A Cisco security researcher recently discovered two vulnerabilities in the IBM AIX Unix platforms that could be exploited to inject commands and logs into targeted systems with elevated privileges.

AIX is a more than 20-year-old set of operating systems for Unix that run on various IBM platforms.

TALOS-2023-1690 (CVE-2023-26286) is a vulnerability in AIX’s errlog() syscall functionality that can be triggered if an adversary …

adversary advisory aix blog blog post cisco cisco security command command injection cve emea exploited ibm inject injection logs old operating systems platforms privileges researcher run security security advisory security researcher spotlight syscall systems talos tim unix vulnerabilities vulnerability vulnerability spotlight

Visit resource

More from malware.news / Malware Analysis, News and Indicators - Latest topics

$563 Bounty Awarded for Reflected Cross-Site Scripting Vulnerability Patched in Yoast SEO WordPress Plugin 46 minutes ago | malware.news
april bounty bug bug bounty +15
Ukraine impacted by escalating Russian financially motivated intrusions 50 minutes ago | malware.news
article attacks computer computer emergency response team +17
France ready for 'unprecedented' cyber threats in upcoming Olympics 51 minutes ago | malware.news
agency anssi article associated press +25
SynLab Italia attack admitted by Black Basta 51 minutes ago | malware.news
article attack basta black basta +15
Significant security gaps found in Chinese government sites 51 minutes ago | malware.news
article china chinese chinese government +15
Novel Android vulnerability exposes DNS queries 51 minutes ago | malware.news
android android devices android vulnerability article +14
Sweeping cybersecurity improvements pledged by Microsoft 51 minutes ago | malware.news
address article board corporate +18
New Horizon3.ai service seeks accelerated vulnerability remediation 51 minutes ago | malware.news
article artificial artificial intelligence as-a-service +21
Czechia, Germany targeted by long-term APT28 cyberespionage campaign 2 hours ago | malware.news
apt28 article attacks bear +26

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

PMO Cybersécurité H/F

@ Hifield | Sèvres, France
View on infosec-jobs.com

Third Party Risk Management - Consultant

@ KPMG India | Bengaluru, Karnataka, India
View on infosec-jobs.com

Consultant Cyber Sécurité H/F - Strasbourg

@ Hifield | Strasbourg, France
View on infosec-jobs.com

Information Security Compliance Analyst

@ KPMG Australia | Melbourne, Australia
View on infosec-jobs.com

GDS Consulting - Cyber Security | Data Protection Senior Consultant

@ EY | Taguig, PH, 1634
View on infosec-jobs.com

Senior QA Engineer - Cloud Security

@ Tenable | Israel
View on infosec-jobs.com
View more jobs