CVE-2023-30990

HIGH

IBM i 7.2-7.5 - Remote Code Execution via DDM Architecture

Title source: llm

Exploitation Summary

EIP tracks 2 public exploits for CVE-2023-30990. PoCs published by silentsignal, cyn8.

AI-analyzed exploit summary This repository contains a working proof-of-concept exploit for CVE-2023-30990, targeting IBM i systems via the DRDA protocol. It includes Python scripts to execute arbitrary commands and a bash script to deploy a Java-based bindshell.

Description

IBM i 7.2, 7.3, 7.4, and 7.5 could allow a remote attacker to execute CL commands as QUSER, caused by an exploitation of DDM architecture. IBM X-Force ID: 254036.

Exploits (2)

nomisec WORKING POC 5 stars

by silentsignal · poc

https://github.com/silentsignal/CVE-2023-30990

View Code ZIP pw:eip

This repository contains a working proof-of-concept exploit for CVE-2023-30990, targeting IBM i systems via the DRDA protocol. It includes Python scripts to execute arbitrary commands and a bash script to deploy a Java-based bindshell.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: IBM i (DRDA service on port 446)

No auth needed

Prerequisites: Network access to port 446 on the target IBM i system · Python 3 with the 'ebcdic' module installed

MITRE ATT&CK

T1189 - Drive-by Compromise T1059 - Command and Scripting Interpreter T1068 - Exploitation for Privilege Escalation

devstral-2 · analyzed Feb 16, 2026 Full analysis →

nomisec WRITEUP

by cyn8 · poc

https://github.com/cyn8/cve-2023-30990

View Code ZIP pw:eip

The repository contains only a README.md file describing an IBM i DDM Unauthenticated RCE vulnerability (CVE-2023-30990) with a Java Reverse Shell, but no actual exploit code or technical details are provided.

Classification

Writeup 30%

Attack Type

Rce

Complexity

Theoretical

Reliability

Theoretical

Target: IBM i DDM (version unspecified)

No auth needed

Prerequisites: IBM i DDM service exposed

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (2)

Core 2

Core References

Patch, Vendor Advisory vendor-advisory

https://www.ibm.com/support/pages/node/7008573

VDB Entry, Vendor Advisory vdb-entry

https://exchange.xforce.ibmcloud.com/vulnerabilities/254036

Scores

CVSS v3 8.6

EPSS 0.0079

EPSS Percentile 51.6%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable yes

Technical Impact partial

Details

CWE

CWE-94

Status published

Products (4)

ibm/i 7.2

ibm/i 7.3

ibm/i 7.4

ibm/i 7.5

Published Jul 04, 2023

Tracked Since Feb 18, 2026