10 June 2024 IBM i Security Alert: IBM i Service Tools Server SST (10/06/2024)

Security bulletin [CVE-2024-31878].

Hello everyone, today a new vulnerability was discovered in “IBM i Service Tools Server (SST)”.
The service tool is vulnerable to enumeration of SST users by a remote attacker. This vulnerability can be used by a malicious actor to collect information about SST users who may be targeted in further attacks.
The CVSS score for this vulnerability is base: 5.3

To remedy this fault, simply apply the PTF corresponding to the version of your IBM i.

For more details on the Security Alert, please visit the official IBM support site:
https://lnkd.in/eNrdEBST

Posted in Alert

Capture d’écran 2024-06-10 140243

Latest news

IBM i Security Alert: Ethernet recovery for certain IBM i adapters (12/03/2025)

12 March 2025

IBM i Security Alert: Database bypass denial of service (12/02/2025)

25 February 2025

IBM i Security Alert: Privilege elevation (02/25/2025)

25 February 2025

IBM i Security Alert: Vulnerabilities in the Java SDK (11/02/2025)

11 February 2025

IBM i Security Alert: RDi XStream (27/01/2025)

27 January 2025

IBM i Security Alert: IBM PowerHA SystemMirror (13/01/2025)

13 January 2025

IBM i Security Alert: 2 critical vulnerabilities in Rational Developer for i (RDi)!(10/12/2024)

10 December 2024

IBM i Security Alert: 4 vulnerabilities in the IBM HTTP Server! (09/12/2024)

09 December 2024