AI description
CVE-2024-56346 affects IBM AIX versions 7.2 and 7.3. It is a vulnerability in the nimesis Network Installation Management (NIM) master service. The vulnerability is due to improper process controls, which could allow a remote attacker to execute arbitrary commands on the system. Exploitation of this vulnerability can be achieved remotely and does not require any privileges or user interaction.
- Description
- IBM AIX 7.2 and 7.3 nimesis NIM master service could allow a remote attacker to execute arbitrary commands due to improper process controls.
- Source
- psirt@us.ibm.com
- NVD status
- Received
CVSS 3.1
- Type
- Primary
- Base score
- 10
- Impact score
- 6
- Exploitability score
- 3.9
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
- Severity
- CRITICAL
- psirt@us.ibm.com
- CWE-114
Hype score is a measure of social media activity compared against trending CVEs from the past 12 months. Max score 100.
- Hype score
1
Two major vendors just patched remote code execution flaws—update NOW before attackers exploit them. 🔴 Veeam Backup (CVE-2025-23120, 9.9/10) ➡️ Affects v12.3.0.310 & earlier ➡️ Allows RCE by authenticated users ➡️ Fixed in v12.3.1 (12.3.1.1139) 🔴 IBM AIX (CVE-2024-56346 &
@achi_tech
22 Mar 2025
32 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🚨Upozorňujeme na kritické RCE zranitelnosti v operačním systému IBM AIX verze 7.2 a 7.3, CVE-2024-56346 a CVE-2024-56347. Služby nimesis NIM master a nimsh umožnují vzdálenému útočníkovi spouštět libovolné příkazy kvůli chybě v kontrole procesů. 📌Doporučujeme aktualizovat na
@GOVCERT_CZ
21 Mar 2025
281 Impressions
1 Retweet
1 Like
1 Bookmark
0 Replies
0 Quotes
Actively exploited CVE : CVE-2024-56346
@transilienceai
21 Mar 2025
12 Impressions
0 Retweets
0 Likes
0 Bookmarks
1 Reply
0 Quotes
IBM AIX Security Breach: CVE-2024-56346 (CVSS 10) & CVE-2024-56347 Explained Two critical vulnerabilities in IBM AIX systems, rated CVSS 10, allow attackers to execute arbitrary code and escalate privileges. https://t.co/7Obr4rFR9R #Cybersecurity #IBMAIX #Vulnerability
@adriananglin
21 Mar 2025
9 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
AIXにCVSSスコア10の脆弱性。CVE-2024-56346はnimesisNIMマスターサービスにおける任意コマンド実行。nimshサービスにおけるCVSSスコア9.6の脆弱性CVE-2024-56347も修正されている。いずれもプロセス制御の不備(CWE-114)。 https://t.co/pprRkYRqoQ
@__kokumoto
20 Mar 2025
790 Impressions
2 Retweets
8 Likes
1 Bookmark
0 Replies
0 Quotes
Two major vendors just patched remote code execution flaws—update NOW before attackers exploit them. 🔴 Veeam Backup (CVE-2025-23120, 9.9/10) ➡️ Affects v12.3.0.310 & earlier ➡️ Allows RCE by authenticated users ➡️ Fixed in v12.3.1 (12.3.1.1139) 🔴 IBM AIX (CVE-2024-56346 &
@TheHackersNews
20 Mar 2025
13248 Impressions
59 Retweets
121 Likes
17 Bookmarks
0 Replies
1 Quote
『Vulnerabilities in AIX could allow a remote attacker to execute arbitrary commands』 Security Bulletin: AIX is vulnerable to arbitrary command execution (CVE-2024-56346, CVE-2024-56347) https://t.co/CySVhW1HHz
@autumn_good_35
19 Mar 2025
304 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
�� CVE-2024-56346 - IBM AIX - HIGH 🚨 🗓️ Date published 2025-03-18 17:15:44 UTC #IBMAIX #CyberSecurity #InfoSec #Vulnerability #TechNews https://t.co/ANoAxqmO4V
@vulns_space
18 Mar 2025
39 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2024-56346 IBM AIX 7.2 and 7.3 nimesis NIM master service could allow a remote attacker to execute arbitrary commands due to improper process controls. https://t.co/Mzo6cF2BRs
@CVEnew
18 Mar 2025
136 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
[CVE-2024-56346: CRITICAL] IBM AIX 7.2 and 7.3 nimesis NIM master service could allow a remote attacker to execute arbitrary commands due to improper process controls.#cybersecurity,#vulnerability https://t.co/Hm95YPqofZ https://t.co/qnfsn6BwBF
@CveFindCom
18 Mar 2025
55 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes