cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2024-22318,https://securityvulnerability.io/vulnerability/CVE-2024-22318,ACS Vulnerable to NTLM Hash Disclosure,"IBM i Access Client Solutions (ACS) 1.1.2 through 1.1.4 and 1.1.4.3 through 1.1.9.4 is vulnerable to NT LAN Manager (NTLM) hash disclosure by an attacker modifying UNC capable paths within ACS configuration files to point to a hostile server. If NTLM is enabled, the Windows operating system will try to authenticate using the current user's session. The hostile server could capture the NTLM hash information to obtain the user's credentials.  IBM X-Force ID:  279091.",IBM,I Access Client Solutions,5.5,MEDIUM,0.0005099999834783375,false,,false,false,false,,,false,false,,2024-02-09T00:26:52.792Z,0
CVE-2023-45182,https://securityvulnerability.io/vulnerability/CVE-2023-45182,IBM i Access Client Solutions information disclosure,"The IBM i Access Client Solutions versions 1.1.2 through 1.1.4 and 1.1.4.3 through 1.1.9.3 contain a vulnerability that allows local attackers to decode the key for encrypted passwords. This flaw enables unauthorized access to the plaintext password, potentially compromising security on other connected systems. An exploitation of this vulnerability emphasizes the need for implementing strong security measures and regular updates to safeguard sensitive information.",IBM,i Access Client Solutions,7.4,HIGH,0.0004199999966658652,false,,false,false,true,2024-01-23T16:05:55.000Z,true,false,false,,2023-12-14T14:15:00.000Z,0
CVE-2023-45185,https://securityvulnerability.io/vulnerability/CVE-2023-45185,IBM i Access Client Solutions code execution,"The vulnerability in IBM i Access Client Solutions versions 1.1.2 through 1.1.9.3 stems from improper authority checks, allowing an attacker to perform operations on a user's PC under their authority. This could lead to the execution of unauthorized commands, significantly compromising system integrity and security.",IBM,I Access Client Solutions,8.8,HIGH,0.0008399999933317304,false,,false,false,true,2024-01-24T13:53:36.000Z,true,false,false,,2023-12-14T14:15:00.000Z,0
CVE-2023-45184,https://securityvulnerability.io/vulnerability/CVE-2023-45184,IBM i Access Client Solutions,IBM i Access Client Solutions 1.1.2 through 1.1.4 and 1.1.4.3 through 1.1.9.3 could allow an attacker to obtain a decryption key due to improper authority checks.  IBM X-Force ID:  268270.,IBM,I Access Client Solutions,6.2,MEDIUM,0.0011500000255182385,false,,false,false,true,2023-12-15T14:04:32.000Z,true,false,false,,2023-12-14T02:15:00.000Z,0