ID:11932 - Exploit for Code Injection in IBM i - CVE-2023-30990

CSH
CYBERSECURITY HELP
Sign In REGISTER
 
Main Vulnerability Database Exploits ID:11932 - Exploit for Code Injection in IBM i - CVE-2023-30990

ID:11932 - Exploit for Code Injection in IBM i - CVE-2023-30990

Published: September 5, 2025


Vulnerability identifier: #VU84594
Vulnerability risk: High
CVE-ID: CVE-2023-30990
CWE-ID: CWE-94
Exploitation vector: Remote access
Vulnerable software:
IBM i

Link to public exploit:


Vulnerability description

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to exploitation of DDM architecture. A remote attacker can execute CL commands as QUSER on the target system.


Remediation

Install updates from vendor's website.