Lucene search
+L

15496 matches found

Vulnrichment
Vulnrichment
added 2025/12/01 1:3 p.m.10 views

CVE-2025-49642 Agent builds for AIX vulnerable to library loading hijacking

Library loading on AIX Zabbix Agent builds can be hijacked by local users with write access to the /home/cecuser directory...

5.8CVSS6.3AI score0.00103EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2025/12/01 1:3 p.m.7 views

CVE-2025-49642

Library loading on AIX Zabbix Agent builds can be hijacked by local users with write access to the /home/cecuser directory...

5.8CVSS5.2AI score0.00103EPSS
Exploits0
CVE
CVE
added 2025/12/01 1:3 p.m.26 views

CVE-2025-49642

CVE-2025-49642 affects the Zabbix Agent for AIX. The issue is an insecure library search path that could allow a local attacker with write access to /home/cecuser to hijack library loading, enabling partial impact on confidentiality/integrity/availability as described in the sources. No patch/ver...

5.8CVSS6.3AI score0.00103EPSS
Exploits0References1
AlpineLinux
AlpineLinux
added 2025/12/01 1:3 p.m.7 views

CVE-2025-49642

Library loading on AIX Zabbix Agent builds can be hijacked by local users with write access to the /home/cecuser directory...

5.8CVSS6.7AI score0.00103EPSS
Exploits0
IBM Security Bulletins
IBM Security Bulletins
added 2025/11/19 3:4 p.m.19 views

Security Bulletin: AIX/VIOS is affected by multiple vulnerabilities due to Python

Summary There are multiple vulnerabilities in Python used by AIX CVE-2025-59375, CVE-2024-47081, CVE-2025-6965, CVE-2024-5642. Python is used by AIX as part of Ansible node management automation. Vulnerability Details CVEID:CVE-2025-59375 DESCRIPTION: libexpat in Expat before 2.7.2 allows attacke...

7.7CVSS6.9AI score0.73495EPSS
Exploits5Affected Software1
IBM AIX
IBM AIX
added 2025/11/19 8:19 a.m.12 views

AIX is affected by multiple vulnerabilities due to Python

IBM SECURITY ADVISORY First Issued: Wed Nov 19 08:19:03 CST 2025 The most recent version of this document is available here: https://aix.software.ibm.com/aix/efixes/security/pythonadvisory17.asc Security Bulletin: AIX is affected by multiple vulnerabilities due to Python...

7.7CVSS6.6AI score0.73495EPSS
Exploits5
NCSC
NCSC
added 2025/11/18 7:3 a.m.8 views

Vulnerabilities fixed in IBM AIX

IBM has fixed vulnerabilities in IBM AIX versions 7.2 and 7.3, as well as in IBM VIOS versions 3.1 and 4.1. The vulnerabilities are related to the insecure storage of NIM private keys, making systems vulnerable to man-in-the-middle attacks. Attackers can also send specially crafted URL requests,...

10CVSS7.3AI score0.00655EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/11/18 12:0 a.m.4 views

AIX : Multiple Vulnerabilities (IJ55897)

The version of AIX installed on the remote host is prior to APAR IJ55897. It is, therefore, affected by multiple vulnerabilities as referenced in the IJ55897 advisory. - IBM AIX 7.2, and 7.3 and IBM VIOS 3.1, and 4.1 nimsh service SSL/TLS implementations could allow a remote attacker to execute...

10CVSS9.1AI score0.00858EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2025/11/18 12:0 a.m.5 views

AIX : Multiple Vulnerabilities (IJ56230)

The version of AIX installed on the remote host is prior to APAR IJ56230. It is, therefore, affected by multiple vulnerabilities as referenced in the IJ56230 advisory. - IBM AIX 7.2, and 7.3 and IBM VIOS 3.1, and 4.1 nimsh service SSL/TLS implementations could allow a remote attacker to execute...

10CVSS9.1AI score0.00858EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2025/11/18 12:0 a.m.6 views

AIX : Multiple Vulnerabilities (IJ55968)

The version of AIX installed on the remote host is prior to APAR IJ55968. It is, therefore, affected by multiple vulnerabilities as referenced in the IJ55968 advisory. - IBM AIX 7.2, and 7.3 and IBM VIOS 3.1, and 4.1 nimsh service SSL/TLS implementations could allow a remote attacker to execute...

10CVSS9.1AI score0.00858EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2025/11/14 10:52 p.m.9 views

CVE-2025-36236

IBM AIX 7.2, and 7.3 and IBM VIOS 3.1, and 4.1 NIM server formerly known as NIM master service nimesis could allow a remote attacker to traverse directories on the system. An attacker could send a specially crafted URL request to write arbitrary files on the system...

9.1CVSS6.9AI score0.00479EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/11/14 10:52 p.m.8 views

CVE-2025-36250

IBM AIX 7.2, and 7.3 and IBM VIOS 3.1, and 4.1 NIM server formerly known as NIM master service nimesis could allow a remote attacker to execute arbitrary commands due to improper process controls. This addresses additional attack vectors for a vulnerability that was previously addressed in...

10CVSS7.4AI score0.01058EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/11/14 10:1 p.m.7 views

CVE-2025-36251

IBM AIX 7.2, and 7.3 and IBM VIOS 3.1, and 4.1 nimsh service SSL/TLS implementations could allow a remote attacker to execute arbitrary commands due to improper process controls. This addresses additional attack vectors for a vulnerability that was previously addressed in CVE-2024-56347...

9.8CVSS7.4AI score0.00858EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/11/14 10:1 p.m.8 views

CVE-2025-36096

IBM AIX 7.2, and 7.3 and IBM VIOS 3.1, and 4.1 stores NIM private keys used in NIM environments in an insecure way which is susceptible to unauthorized access by an attacker using man in the middle techniques...

9CVSS6.7AI score0.00295EPSS
Exploits0References1
EUVD
EUVD
added 2025/11/14 12:30 a.m.10 views

EUVD-2025-180541

IBM AIX 7.2, and 7.3 and IBM VIOS 3.1, and 4.1 nimsh service SSL/TLS implementations could allow a remote attacker to execute arbitrary commands due to improper process controls. This addresses additional attack vectors for a vulnerability that was previously addressed in CVE-2024-56347...

9.6CVSS6.9AI score0.00858EPSS
Exploits0References2
EUVD
EUVD
added 2025/11/14 12:30 a.m.8 views

EUVD-2025-180538

IBM AIX 7.2, and 7.3 and IBM VIOS 3.1, and 4.1 NIM server formerly known as NIM master service nimesis could allow a remote attacker to traverse directories on the system. An attacker could send a specially crafted URL request to write arbitrary files on the system...

8.2CVSS6.4AI score0.00479EPSS
Exploits0References2
EUVD
EUVD
added 2025/11/14 12:30 a.m.8 views

EUVD-2025-180540

IBM AIX 7.2, and 7.3 and IBM VIOS 3.1, and 4.1 stores NIM private keys used in NIM environments in an insecure way which is susceptible to unauthorized access by an attacker using man in the middle techniques...

9CVSS6.2AI score0.00295EPSS
Exploits0References2
EUVD
EUVD
added 2025/11/14 12:30 a.m.7 views

EUVD-2025-180539

IBM AIX 7.2, and 7.3 and IBM VIOS 3.1, and 4.1 NIM server formerly known as NIM master service nimesis could allow a remote attacker to execute arbitrary commands due to improper process controls. This addresses additional attack vectors for a vulnerability that was previously addressed in...

10CVSS7AI score0.01058EPSS
Exploits0References2
NVD
NVD
added 2025/11/13 10:15 p.m.12 views

CVE-2025-36251

IBM AIX 7.2, and 7.3 and IBM VIOS 3.1, and 4.1 nimsh service SSL/TLS implementations could allow a remote attacker to execute arbitrary commands due to improper process controls. This addresses additional attack vectors for a vulnerability that was previously addressed in CVE-2024-56347...

9.8CVSS0.00528EPSS
Exploits0References1
OSV
OSV
added 2025/11/13 10:15 p.m.4 views

CVE-2025-36251

IBM AIX 7.2, and 7.3 and IBM VIOS 3.1, and 4.1 nimsh service SSL/TLS implementations could allow a remote attacker to execute arbitrary commands due to improper process controls. This addresses additional attack vectors for a vulnerability that was previously addressed in CVE-2024-56347...

9.8CVSS6.1AI score0.00528EPSS
Exploits0References1
Rows per page
Query Builder