VYPR

i Access Client Solutions

by IBM

CVEs (5)

  • CVE-2026-7770HigJun 1, 2026
    risk 0.57cvss 8.8epss 0.00

    IBM i Access Family 1.1.5.0 through 1.1.9.12 IBM i Access Client Solutions (ACS) is vulnerable to remote code execution when configured to listen for requests from IBM i Navigator.

  • CVE-2023-45185HigDec 14, 2023
    risk 0.48cvss 7.4epss 0.01

    IBM i Access Client Solutions 1.1.2 through 1.1.4 and 1.1.4.3 through 1.1.9.3 could allow an attacker to execute remote code. Due to improper authority checks the attacker could perform operations on the PC under the user's authority. IBM X-Force ID: 268273.

  • CVE-2023-45182HigDec 14, 2023
    risk 0.48cvss 7.4epss 0.01

    IBM i Access Client Solutions 1.1.2 through 1.1.4 and 1.1.4.3 through 1.1.9.3 is vulnerable to having its key for an encrypted password decoded. By somehow gaining access to the encrypted password, a local attacker could exploit this vulnerability to obtain the password to…

  • CVE-2023-45184MedDec 14, 2023
    risk 0.40cvss 6.2epss 0.02

    IBM i Access Client Solutions 1.1.2 through 1.1.4 and 1.1.4.3 through 1.1.9.3 could allow an attacker to obtain a decryption key due to improper authority checks. IBM X-Force ID: 268270.

  • CVE-2024-22318MedFeb 9, 2024
    risk 0.36cvss 5.1epss 0.01

    IBM i Access Client Solutions (ACS) 1.1.2 through 1.1.4 and 1.1.4.3 through 1.1.9.4 is vulnerable to NT LAN Manager (NTLM) hash disclosure by an attacker modifying UNC capable paths within ACS configuration files to point to a hostile server. If NTLM is enabled, the Windows…