Lucene search
K

51 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2026/02/24 5:2 p.m.10 views

Security Bulletin: AIX Xorg X Server is vulnerable to memory corruption or a denial of service (CVE-2025-62230, CVE-2025-62231)

Summary Updated Feb 24 2026: New iFix for 7.3 TL3 SP2 provided with correct fileset prereqs. Updated the affected fileset levels to show that 7.3 TL3 SP2 is vulnerable. Vulnerabilities in Xorg X Server could cause a memory corruption or denial of service CVE-2025-62230, CVE-2025-62231...

7.3CVSS7.6AI score0.00281EPSS
Exploits0Affected Software2
RedhatCVE
RedhatCVE
added 2025/11/14 10:52 p.m.7 views

CVE-2025-36236

IBM AIX 7.2, and 7.3 and IBM VIOS 3.1, and 4.1 NIM server formerly known as NIM master service nimesis could allow a remote attacker to traverse directories on the system. An attacker could send a specially crafted URL request to write arbitrary files on the system...

9.1CVSS6.9AI score0.00438EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/11/14 10:52 p.m.7 views

CVE-2025-36250

IBM AIX 7.2, and 7.3 and IBM VIOS 3.1, and 4.1 NIM server formerly known as NIM master service nimesis could allow a remote attacker to execute arbitrary commands due to improper process controls. This addresses additional attack vectors for a vulnerability that was previously addressed in...

10CVSS7.4AI score0.01058EPSS
Exploits0References1
EUVD
EUVD
added 2025/11/14 12:30 a.m.7 views

EUVD-2025-180538

IBM AIX 7.2, and 7.3 and IBM VIOS 3.1, and 4.1 NIM server formerly known as NIM master service nimesis could allow a remote attacker to traverse directories on the system. An attacker could send a specially crafted URL request to write arbitrary files on the system...

8.2CVSS6.4AI score0.00438EPSS
Exploits0References2
EUVD
EUVD
added 2025/11/14 12:30 a.m.5 views

EUVD-2025-180539

IBM AIX 7.2, and 7.3 and IBM VIOS 3.1, and 4.1 NIM server formerly known as NIM master service nimesis could allow a remote attacker to execute arbitrary commands due to improper process controls. This addresses additional attack vectors for a vulnerability that was previously addressed in...

10CVSS7AI score0.01058EPSS
Exploits0References2
EUVD
EUVD
added 2025/11/14 12:30 a.m.6 views

EUVD-2025-180540

IBM AIX 7.2, and 7.3 and IBM VIOS 3.1, and 4.1 stores NIM private keys used in NIM environments in an insecure way which is susceptible to unauthorized access by an attacker using man in the middle techniques...

9CVSS6.2AI score0.00269EPSS
Exploits0References2
OSV
OSV
added 2025/11/13 10:15 p.m.6 views

CVE-2025-36250

IBM AIX 7.2, and 7.3 and IBM VIOS 3.1, and 4.1 NIM server formerly known as NIM master service nimesis could allow a remote attacker to execute arbitrary commands due to improper process controls. This addresses additional attack vectors for a vulnerability that was previously addressed in...

9.8CVSS6.1AI score0.00632EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/11/13 10:1 p.m.11 views

CVE-2025-36250 AIX Code Execution

IBM AIX 7.2, and 7.3 and IBM VIOS 3.1, and 4.1 NIM server formerly known as NIM master service nimesis could allow a remote attacker to execute arbitrary commands due to improper process controls. This addresses additional attack vectors for a vulnerability that was previously addressed in...

10CVSS0.00632EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/11/13 10:1 p.m.10 views

CVE-2025-36096 AIX Insufficiently Protected Credentials

IBM AIX 7.2, and 7.3 and IBM VIOS 3.1, and 4.1 stores NIM private keys used in NIM environments in an insecure way which is susceptible to unauthorized access by an attacker using man in the middle techniques...

9CVSS0.00269EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/11/13 12:0 a.m.6 views

IBM AIX和IBM VIOS 安全漏洞

IBM AIX and IBM VIOS are both products of the International Business Machines IBM Corporation.IBM AIX is an open standards-based UNIX operating system developed for the IBM Power architecture.IBM VIOS is part of the PowerVm® Editions hardware feature set.IBM AIX is an open standards-based UNIX...

9CVSS6AI score0.00269EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/11/13 12:0 a.m.11 views

PT-2025-46922

Name of the Vulnerable Software and Affected Versions IBM AIX versions 7.2 and 7.3 IBM VIOS versions 3.1 and 4.1 Description The NIM server service formerly known as NIM master – nimesis – may allow a remote attacker to traverse directories on the system. An attacker could send a specially crafte...

9.1CVSS6.5AI score0.00438EPSS
Exploits0References11
IBM AIX
IBM AIX
added 2025/10/06 3:10 p.m.13 views

AIX is vulnerable to a memory corruption issue (CVE-2025-6965) due to RPM

IBM SECURITY ADVISORY First Issued: Mon Oct 6 15:10:47 CDT 2025 The most recent version of this document is available here: https://aix.software.ibm.com/aix/efixes/security/rpmadvisory4.asc Security Bulletin: AIX is vulnerable to a memory corruption issue CVE-2025-6965 due to RPM...

7.7CVSS7.1AI score0.73495EPSS
Exploits3
OSV
OSV
added 2025/09/16 3:15 p.m.3 views

CVE-2025-36244

IBM AIX 7.2, 7.3, IBM VIOS 3.1, and 4.1, when configured to use Kerberos network authentication, could allow a local user to write to files on the system with root privileges due to improper initialization of critical variables...

5.5CVSS5.8AI score0.00113EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/09/16 12:0 a.m.6 views

PT-2025-37994

Name of the Vulnerable Software and Affected Versions: IBM AIX versions 7.2 through 7.3 IBM VIOS versions 3.1 through 4.1 Description: IBM AIX and VIOS, when configured to use Kerberos network authentication, may allow a local user to gain root privileges by writing to files on the system due to...

7.4CVSS6.1AI score0.00113EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2025/03/18 5:15 p.m.1 views

CVE-2024-56346

IBM AIX 7.2 and 7.3 nimesis NIM master service could allow a remote attacker to execute arbitrary commands due to improper process controls...

10CVSS7.7AI score0.01058EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2024/12/25 3:15 p.m.4 views

CVE-2024-47102

IBM AIX 7.2, 7.3, VIOS 3.1, and 4.1 could allow a non-privileged local user to exploit a vulnerability in the AIX perfstat kernel extension to cause a denial of service...

5.5CVSS5.8AI score0.00142EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/12/24 12:0 a.m.4 views

PT-2024-32409 · Ibm · Aix +2

Name of the Vulnerable Software and Affected Versions: IBM AIX versions 7.2 through 7.3 VIOS versions 3.1 through 4.1 Description: The issue allows a non-privileged local user to exploit a vulnerability in the AIX perfstat kernel extension to cause a denial of service. Recommendations: For IBM AI...

5.5CVSS6.6AI score0.00142EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2024/09/27 12:0 a.m.5 views

PT-2024-9580 · Ibm · Vios +1

Name of the Vulnerable Software and Affected Versions: IBM AIX versions 7.2 through 7.3 VIOS versions 3.1 through 4.1 Description: The issue is related to the improper neutralization of input in the invscout component of IBM AIX and VIOS operating systems, allowing a local user to execute arbitra...

7.8CVSS7.8AI score0.00231EPSS
Exploits0References13
CNNVD
CNNVD
added 2024/05/16 12:0 a.m.4 views

IBM AIX 安全漏洞

IBM AIX is an open standards-based UNIX operating system developed for the IBM Power architecture by International Business Machines IBM. A security vulnerability exists in IBM AIX version 7.2, 7.3, VIOS version 3.1, and VIOS version 4.1. An attacker could exploit this vulnerability to execute...

8.4CVSS7AI score0.0023EPSS
Exploits0References3
OSV
OSV
added 2024/01/11 2:15 a.m.8 views

CVE-2023-45175

IBM AIX 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the TCP/IP kernel extension to cause a denial of service. IBM X-Force ID: 267973...

5.5CVSS5.8AI score0.00168EPSS
Exploits0References2
Rows per page
Query Builder