Lucene search
K

48 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2026/04/15 10:5 p.m.9 views

Security Bulletin: Multiple vulnerabilities in Python affect AIX

Summary Vulnerabilities in Python could allow a null pointer dereference CVE-2026-32776, CVE-2026-32778, an infinite loop CVE-2026-32777, or impact availability CVE-2025-12084. Python is used by AIX as part of Ansible node management automation. Vulnerability Details CVEID:CVE-2026-32776...

6.3CVSS5.8AI score0.00708EPSS
Exploits1Affected Software2
IBM Security Bulletins
IBM Security Bulletins
added 2026/04/15 10:5 p.m.15 views

Security Bulletin: Vulnerability impacts AIX due to cURL libcurl (CVE-2025-14524)

Summary Vulnerability in cURL libcurl might wrongly pass on an OAuth2 bearer token CVE-2025-14524. AIX uses cURL libcurl as part of rsyslog, LV/PV encryption integration with HPCS and in Live Update for interacting with HMC. Vulnerability Details CVEID:CVE-2025-14524 DESCRIPTION: When an OAuth2...

5.3CVSS5.8AI score0.00611EPSS
Exploits1Affected Software1
IBM AIX
IBM AIX
added 2026/04/15 3:24 p.m.15 views

Vulnerability impacts AIX due to cURL libcurl (CVE-2025-14524)

IBM SECURITY ADVISORY First Issued: Wed Apr 15 15:24:39 CDT 2026 The most recent version of this document is available here: https://aix.software.ibm.com/aix/efixes/security/curladvisory9.asc Security Bulletin: Vulnerability impacts AIX due to cURL libcurl CVE-2025-14524...

5.3CVSS5.8AI score0.00611EPSS
Exploits1
IBM Security Bulletins
IBM Security Bulletins
added 2026/02/24 5:2 p.m.11 views

Security Bulletin: AIX Xorg X Server is vulnerable to memory corruption or a denial of service (CVE-2025-62230, CVE-2025-62231)

Summary Updated Feb 24 2026: New iFix for 7.3 TL3 SP2 provided with correct fileset prereqs. Updated the affected fileset levels to show that 7.3 TL3 SP2 is vulnerable. Vulnerabilities in Xorg X Server could cause a memory corruption or denial of service CVE-2025-62230, CVE-2025-62231...

7.3CVSS7.6AI score0.00281EPSS
Exploits0Affected Software2
IBM AIX
IBM AIX
added 2026/02/05 3:13 p.m.11 views

AIX is vulnerable to denial of service and possible code execution due to Perl (WS-2025-0004)

IBM SECURITY ADVISORY First Issued: Thu Feb 5 15:13:54 CST 2026 The most recent version of this document is available here: https://aix.software.ibm.com/aix/efixes/security/perladvisory12.asc Security Bulletin: AIX is vulnerable to denial of service and possible code execution due to Perl...

7.5CVSS7.6AI score0.01569EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/11/14 10:52 p.m.8 views

CVE-2025-36236

IBM AIX 7.2, and 7.3 and IBM VIOS 3.1, and 4.1 NIM server formerly known as NIM master service nimesis could allow a remote attacker to traverse directories on the system. An attacker could send a specially crafted URL request to write arbitrary files on the system...

9.1CVSS6.9AI score0.00438EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/11/14 10:52 p.m.7 views

CVE-2025-36250

IBM AIX 7.2, and 7.3 and IBM VIOS 3.1, and 4.1 NIM server formerly known as NIM master service nimesis could allow a remote attacker to execute arbitrary commands due to improper process controls. This addresses additional attack vectors for a vulnerability that was previously addressed in...

10CVSS7.4AI score0.01058EPSS
Exploits0References1
EUVD
EUVD
added 2025/11/14 12:30 a.m.7 views

EUVD-2025-180538

IBM AIX 7.2, and 7.3 and IBM VIOS 3.1, and 4.1 NIM server formerly known as NIM master service nimesis could allow a remote attacker to traverse directories on the system. An attacker could send a specially crafted URL request to write arbitrary files on the system...

8.2CVSS6.4AI score0.00438EPSS
Exploits0References2
EUVD
EUVD
added 2025/11/14 12:30 a.m.5 views

EUVD-2025-180539

IBM AIX 7.2, and 7.3 and IBM VIOS 3.1, and 4.1 NIM server formerly known as NIM master service nimesis could allow a remote attacker to execute arbitrary commands due to improper process controls. This addresses additional attack vectors for a vulnerability that was previously addressed in...

10CVSS7AI score0.01058EPSS
Exploits0References2
EUVD
EUVD
added 2025/11/14 12:30 a.m.6 views

EUVD-2025-180540

IBM AIX 7.2, and 7.3 and IBM VIOS 3.1, and 4.1 stores NIM private keys used in NIM environments in an insecure way which is susceptible to unauthorized access by an attacker using man in the middle techniques...

9CVSS6.2AI score0.00269EPSS
Exploits0References2
OSV
OSV
added 2025/11/13 10:15 p.m.6 views

CVE-2025-36250

IBM AIX 7.2, and 7.3 and IBM VIOS 3.1, and 4.1 NIM server formerly known as NIM master service nimesis could allow a remote attacker to execute arbitrary commands due to improper process controls. This addresses additional attack vectors for a vulnerability that was previously addressed in...

9.8CVSS6.1AI score0.00632EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/11/13 10:1 p.m.11 views

CVE-2025-36250 AIX Code Execution

IBM AIX 7.2, and 7.3 and IBM VIOS 3.1, and 4.1 NIM server formerly known as NIM master service nimesis could allow a remote attacker to execute arbitrary commands due to improper process controls. This addresses additional attack vectors for a vulnerability that was previously addressed in...

10CVSS0.00632EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/11/13 10:1 p.m.10 views

CVE-2025-36096 AIX Insufficiently Protected Credentials

IBM AIX 7.2, and 7.3 and IBM VIOS 3.1, and 4.1 stores NIM private keys used in NIM environments in an insecure way which is susceptible to unauthorized access by an attacker using man in the middle techniques...

9CVSS0.00269EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/11/13 12:0 a.m.6 views

IBM AIX和IBM VIOS 安全漏洞

IBM AIX and IBM VIOS are both products of the International Business Machines IBM Corporation.IBM AIX is an open standards-based UNIX operating system developed for the IBM Power architecture.IBM VIOS is part of the PowerVm® Editions hardware feature set.IBM AIX is an open standards-based UNIX...

9CVSS6AI score0.00269EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/11/13 12:0 a.m.11 views

PT-2025-46922

Name of the Vulnerable Software and Affected Versions IBM AIX versions 7.2 and 7.3 IBM VIOS versions 3.1 and 4.1 Description The NIM server service formerly known as NIM master – nimesis – may allow a remote attacker to traverse directories on the system. An attacker could send a specially crafte...

9.1CVSS6.5AI score0.00438EPSS
Exploits0References11
IBM AIX
IBM AIX
added 2025/10/06 3:10 p.m.14 views

AIX is vulnerable to a memory corruption issue (CVE-2025-6965) due to RPM

IBM SECURITY ADVISORY First Issued: Mon Oct 6 15:10:47 CDT 2025 The most recent version of this document is available here: https://aix.software.ibm.com/aix/efixes/security/rpmadvisory4.asc Security Bulletin: AIX is vulnerable to a memory corruption issue CVE-2025-6965 due to RPM...

7.7CVSS7.1AI score0.73495EPSS
Exploits3
OSV
OSV
added 2025/09/16 3:15 p.m.3 views

CVE-2025-36244

IBM AIX 7.2, 7.3, IBM VIOS 3.1, and 4.1, when configured to use Kerberos network authentication, could allow a local user to write to files on the system with root privileges due to improper initialization of critical variables...

5.5CVSS5.8AI score0.00113EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/09/16 12:0 a.m.6 views

PT-2025-37994

Name of the Vulnerable Software and Affected Versions: IBM AIX versions 7.2 through 7.3 IBM VIOS versions 3.1 through 4.1 Description: IBM AIX and VIOS, when configured to use Kerberos network authentication, may allow a local user to gain root privileges by writing to files on the system due to...

7.4CVSS6.1AI score0.00113EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2025/03/18 5:15 p.m.1 views

CVE-2024-56346

IBM AIX 7.2 and 7.3 nimesis NIM master service could allow a remote attacker to execute arbitrary commands due to improper process controls...

10CVSS7.7AI score0.01058EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2024/12/25 3:15 p.m.4 views

CVE-2024-47102

IBM AIX 7.2, 7.3, VIOS 3.1, and 4.1 could allow a non-privileged local user to exploit a vulnerability in the AIX perfstat kernel extension to cause a denial of service...

5.5CVSS5.8AI score0.00142EPSS
Exploits0References1
Rows per page
Query Builder