25205 matches found
CVE-2025-36096
CVE-2025-36096 concerns IBM AIX (versions 7.2/7.3) and IBM VIOS (3.1/4.1) where NIM private keys are stored insecurely in NIM environments, enabling unauthorized access via man-in-the-middle techniques. IBM’s Security Bulletin confirms this in conjunction with related CVEs (CVE-2025-36251, CVE-20...
CVE-2025-36096 AIX Insufficiently Protected Credentials
IBM AIX 7.2, and 7.3 and IBM VIOS 3.1, and 4.1 stores NIM private keys used in NIM environments in an insecure way which is susceptible to unauthorized access by an attacker using man in the middle techniques...
CVE-2025-36251
CVE-2025-36251 : IBM AIX nimsh service SSL/TLS implementations allow a remote attacker to execute arbitrary commands due to improper process controls. Affected: AIX 7.2, AIX 7.3, and VIOS 3.1 and 4.1. This is part of a broader set of issues addressed in IBM’s security bulletin which lists related...
CVE-2025-46427
Dell SmartFabric OS10 Software, versions prior to 10.6.1.0, contain an Improper Neutralization of Special Elements used in a Command 'Command Injection' vulnerability. A low privileged attacker with remote access could potentially exploit this vulnerability, leading to Command execution...
CVE-2025-46428
Dell SmartFabric OS10 Software, versions prior to 10.6.1.0, contain an Improper Neutralization of Special Elements used in a Command 'Command Injection' vulnerability. A low privileged attacker with remote access could potentially exploit this vulnerability, leading to Code execution...
Siemens Spectrum Power 4
RISK EVALUATION Successful exploitation of these vulnerabilities could allow an attacker to remotely execute code as application administrator or locally execute code as operating system administrator. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of...
PT-2025-46835
Name of the Vulnerable Software and Affected Versions Zoom Workplace VDI Plugin versions 6.3.0 through 6.3.13 Zoom Workplace VDI Plugin versions 6.4.0 through 6.4.13 Zoom Workplace VDI Plugin versions 6.5.0 through 6.5.9 Description The installer for the Zoom Workplace VDI Plugin on macOS is...
PT-2025-46831
External control of file name or path in Zoom Workplace for macOS before version 6.5.10 may allow an authenticated user to conduct a disclosure of information via local access...
IBM AIX和IBM VIOS 安全漏洞
IBM AIX and IBM VIOS are both products of the International Business Machines IBM Corporation.IBM AIX is an open standards-based UNIX operating system developed for the IBM Power architecture.IBM VIOS is part of the PowerVm® Editions hardware feature set.IBM AIX is an open standards-based UNIX...
Apple macOS USD readAccessorData Heap-based Buffer Overflow Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Apple macOS. Interaction with the USD library is required to exploit this vulnerability but attack vectors may vary depending on the implementation. The specific flaw exists within the USD library. T...
Photon OS 4.0: Lasso PHSA-2025-4.0-0903
An update of the lasso package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2025-4.0-0903. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...
Photon OS 4.0: Linux PHSA-2025-4.0-0905
An update of the linux package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2025-4.0-0905. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...
PT-2025-46923
Name of the Vulnerable Software and Affected Versions IBM AIX versions 7.2 and 7.3 IBM VIOS versions 3.1 and 4.1 Description The NIM server formerly known as NIM master service nimesis in IBM AIX and IBM VIOS may allow a remote attacker to execute arbitrary commands and traverse directories on th...
IBM AIX和IBM VIOS 安全漏洞
IBM AIX and IBM VIOS are both products of the International Business Machines IBM Corporation.IBM AIX is an open standards-based UNIX operating system developed for the IBM Power architecture.IBM VIOS is part of the PowerVm® Editions hardware feature set.IBM AIX is an open standards-based UNIX...
Photon OS 4.0: Curl PHSA-2025-4.0-0903
An update of the curl package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2025-4.0-0903. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...
Photon OS 5.0: Runc PHSA-2025-5.0-0676
An update of the runc package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2025-5.0-0676. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...
Photon OS 5.0: Lasso PHSA-2025-5.0-0674
An update of the lasso package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2025-5.0-0674. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...
Photon OS 5.0: Vim PHSA-2025-5.0-0672
An update of the vim package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2025-5.0-0672. The text itself is copyright C VMware, Inc. include'compat.inc'; if description scriptid27530...
Photon OS 4.0: Docker PHSA-2025-4.0-0899
An update of the docker package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2025-4.0-0899. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...
Apple macOS USD importMeshJointWeights Heap-based Buffer Overflow Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Apple macOS. Interaction with the USD library is required to exploit this vulnerability but attack vectors may vary depending on the implementation. The specific flaw exists within the USD library. T...