CVE-2024-22318

IBM i Access Client Solutions (ACS) 1.1.2 through 1.1.4 and 1.1.4.3 through 1.1.9.4 is vulnerable to NT LAN Manager (NTLM) hash disclosure by an attacker modifying UNC capable paths within ACS configuration files to point to a hostile server. If NTLM is enabled, the Windows operating system will try to authenticate using the current user's session. The hostile server could capture the NTLM hash information to obtain the user's credentials. IBM X-Force ID: 279091.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:ibm:i_access_client_solutions:*:*:*:*:*:*:*:*
cpe:2.3:a:ibm:i_access_client_solutions:*:*:*:*:*:*:*:*

History

20 Sep 2024, 20:15

Type Values Removed Values Added
CWE CWE-327

03 Apr 2024, 02:15

Type Values Removed Values Added
CWE CWE-200

16 Feb 2024, 21:38

Type Values Removed Values Added
First Time Ibm i Access Client Solutions
Ibm
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 5.5
CPE cpe:2.3:a:ibm:i_access_client_solutions:*:*:*:*:*:*:*:*
CWE CWE-384
References () https://www.ibm.com/support/pages/node/7116091 - () https://www.ibm.com/support/pages/node/7116091 - Vendor Advisory
References () https://exchange.xforce.ibmcloud.com/vulnerabilities/279091 - () https://exchange.xforce.ibmcloud.com/vulnerabilities/279091 - VDB Entry
References () http://seclists.org/fulldisclosure/2024/Feb/7 - () http://seclists.org/fulldisclosure/2024/Feb/7 - Mailing List, Third Party Advisory
References () http://packetstormsecurity.com/files/177069/IBM-i-Access-Client-Solutions-Remote-Credential-Theft.html - () http://packetstormsecurity.com/files/177069/IBM-i-Access-Client-Solutions-Remote-Credential-Theft.html - Third Party Advisory, VDB Entry

14 Feb 2024, 03:15

Type Values Removed Values Added
References
  • () http://seclists.org/fulldisclosure/2024/Feb/7 -

09 Feb 2024, 18:15

Type Values Removed Values Added
References
  • () http://packetstormsecurity.com/files/177069/IBM-i-Access-Client-Solutions-Remote-Credential-Theft.html -

09 Feb 2024, 01:37

Type Values Removed Values Added
New CVE

Information

Published : 2024-02-09 01:15

Updated : 2024-09-20 20:15


NVD link : CVE-2024-22318

Mitre link : CVE-2024-22318

CVE.ORG link : CVE-2024-22318


JSON object : View

Products Affected

ibm

  • i_access_client_solutions
CWE
CWE-384

Session Fixation

CWE-327

Use of a Broken or Risky Cryptographic Algorithm