Lucene search
K

620 matches found

IBM AIX
IBM AIX
added 2024/09/17 4:13 p.m.75 views

AIX is affected by a denial of service (CVE-2024-0397) and information disclosure (CVE-2024-4032 CVE-2024-37891) due to Python

IBM SECURITY ADVISORY First Issued: Tue Sep 17 16:13:13 CDT 2024 The most recent version of this document is available here: https://aix.software.ibm.com/aix/efixes/security/pythonadvisory12.asc Security Bulletin: AIX is affected by a denial of service CVE-2024-0397 and information disclosure...

7.5CVSS7.3AI score0.01141EPSS
Exploits1
IBM AIX
IBM AIX
added 2024/07/16 3:22 p.m.90 views

AIX is vulnerable to a denial of service (CVE-2024-2511 CVE-2024-0727) due to OpenSSL

IBM SECURITY ADVISORY First Issued: Tue Jul 16 15:22:01 CDT 2024 The most recent version of this document is available here: https://aix.software.ibm.com/aix/efixes/security/openssladvisory41.asc Security Bulletin: AIX is vulnerable to a denial of service CVE-2024-2511, CVE-2024-0727 due to OpenS...

5.9CVSS7.3AI score0.54026EPSS
Exploits0
IBM Security Bulletins
IBM Security Bulletins
added 2024/07/09 10:3 p.m.167 views

Security Bulletin: AIX is vulnerable to arbitrary code execution (CVE-2024-6387) due to OpenSSH

Summary Vulnerability in AIX's OpenSSH could allow a remote attacker to execute arbitrary code CVE-2024-6387. OpenSSH is used by AIX for remote login. Vulnerability Details CVEID:CVE-2024-6387 DESCRIPTION: OpenSSH could allow a remote attacker to execute arbitrary code on the system, caused by a...

8.1CVSS8.5AI score0.99506EPSS
Exploits68Affected Software2
IBM Security Bulletins
IBM Security Bulletins
added 2024/06/24 10:4 p.m.39 views

Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect AIX

Summary There are multiple vulnerabilities in IBM SDK Java Technology Edition, Version 8 used by AIX. AIX has addressed the applicable CVEs. Vulnerability Details CVEID:CVE-2024-21085 DESCRIPTION: An unspecified vulnerability in Java SE related to the VM component could allow a remote attacker to...

7.5CVSS5.9AI score0.01276EPSS
Exploits0Affected Software2
NVD
NVD
added 2024/05/16 5:16 p.m.31 views

CVE-2024-27260

IBM AIX could 7.2, 7.3, VIOS 3.1, and VIOS 4.1 allow a non-privileged local user to exploit a vulnerability in the invscout command to execute arbitrary commands. IBM X-Force ID: 283985...

8.4CVSS8.3AI score0.0023EPSS
Exploits0References2
OSV
OSV
added 2024/05/16 5:16 p.m.4 views

CVE-2024-27260

IBM AIX could 7.2, 7.3, VIOS 3.1, and VIOS 4.1 allow a non-privileged local user to exploit a vulnerability in the invscout command to execute arbitrary commands. IBM X-Force ID: 283985...

8.4CVSS6AI score0.0023EPSS
Exploits0References2
CVE
CVE
added 2024/05/16 4:32 p.m.114 views

CVE-2024-27260

CVE-2024-27260 : IBM AIX and VIOS are affected by a vulnerability in the invscout command that could allow a non-privileged local user to execute arbitrary commands. Affected products/versions: AIX 7.2 and 7.3; VIOS 3.1 and 4.1 (invscout.rte 2.2.0.0–2.2.0.26). Root cause is the invscout component...

8.4CVSS7AI score0.0023EPSS
Exploits0References2Affected Software2
IBM Security Bulletins
IBM Security Bulletins
added 2024/05/16 12:4 a.m.97 views

Security Bulletin: AIX is vulnerable to arbitrary command execution due to invscout (CVE-2024-27260)

Summary A vulnerability in the AIX invscout command could allow a non-privileged local user to execute arbitrary commands CVE-2024-27260. Vulnerability Details CVEID:CVE-2024-27260 DESCRIPTION: IBM AIX could allow a non-privileged local user to exploit a vulnerability in the invscout command to...

8.4CVSS8.5AI score0.0023EPSS
Exploits0Affected Software2
Positive Technologies
Positive Technologies
added 2024/05/15 12:0 a.m.5 views

PT-2024-21778 · Ibm · Vios +1

Name of the Vulnerable Software and Affected Versions: IBM AIX versions 7.2 through 7.3 VIOS versions 3.1 through 4.1 Description: A vulnerability in the invscout command allows a non-privileged local user to execute arbitrary commands. This issue poses a high risk and could be exploited by...

8.4CVSS7.6AI score0.0023EPSS
Exploits0References10
OSV
OSV
added 2024/05/07 9:15 p.m.5 views

CVE-2024-27273

IBM AIX's Unix domain AIX 7.2, 7.3, VIOS 3.1, and VIOS 4.1 datagram socket implementation could potentially expose applications using Unix domain datagram sockets with SOPEERID operation and may lead to privilege escalation. IBM X-Force ID: 284903...

7.8CVSS5.8AI score0.00146EPSS
Exploits0References2
IBM Security Bulletins
IBM Security Bulletins
added 2024/05/06 7:8 p.m.39 views

Security Bulletin: AIX is vulnerable to privilege escalation (CVE-2024-27273)

Summary Vulnerability in the AIX kernel may lead to privilege escalation CVE-2024-27273. Vulnerability Details CVEID:CVE-2024-27273 DESCRIPTION: IBM AIX's Unix domain datagram socket implementation could potentially expose applications using Unix domain datagram sockets with SOPEERID operation an...

8.1CVSS8.2AI score0.00146EPSS
Exploits0Affected Software2
Positive Technologies
Positive Technologies
added 2024/05/06 12:0 a.m.9 views

PT-2024-21786 · Ibm · Vios +1

Name of the Vulnerable Software and Affected Versions: IBM AIX versions 7.2 through 7.3 VIOS versions 3.1 through 4.1 Description: The Unix domain datagram socket implementation in IBM AIX could potentially expose applications using Unix domain datagram sockets with the SO PEERID operation, which...

8.1CVSS6.8AI score0.00146EPSS
Exploits0References9
IBM AIX
IBM AIX
added 2024/04/24 3:34 p.m.243 views

AIX is vulnerable to arbitrary code execution due to RPM (CVE-2023-7104)

IBM SECURITY ADVISORY First Issued: Wed Apr 24 15:34:58 CDT 2024 The most recent version of this document is available here: https://aix.software.ibm.com/aix/efixes/security/rpmadvisory2.asc Security Bulletin: AIX is vulnerable to arbitrary code execution due to RPM CVE-2023-7104...

7.3CVSS9.4AI score0.01249EPSS
Exploits1
IBM Security Bulletins
IBM Security Bulletins
added 2024/04/18 4:11 p.m.68 views

Security Bulletin: AIX is vulnerable to privilege escalation and denial of service (CVE-2023-45166, CVE-2023-45174, CVE-2023-45170)

Summary UPDATED Feb 2 2024 New iFixes are available. The new iFixes resolve a technical issue with print queue status. Both sets of iFixes new and original resolve the security vulnerabilities described in the bulletin. The new iFixes are only needed if you experience the technical issue describe...

8.4CVSS7.9AI score0.00238EPSS
Exploits0Affected Software2
IBM Security Bulletins
IBM Security Bulletins
added 2024/04/18 4:10 p.m.95 views

Security Bulletin: AIX is vulnerable to email spoofing due to sendmail (CVE-2023-51765)

Summary Vulnerability in sendmail could allow a remote attacker to spoof an email CVE-2023-51765. Vulnerability Details CVEID:CVE-2023-51765 DESCRIPTION: Proofpoint sendmail is vulnerable to SMTP smuggling, caused by improper handling of line endings . in an email message. By sending a specially...

5.3CVSS5.7AI score0.01073EPSS
Exploits2Affected Software2
CNVD
CNVD
added 2024/03/14 12:0 a.m.7 views

IBM AIX/VIOS Command Execution Vulnerability

IBM AIX is an open standards-based UNIX operating system developed by International Business Machines IBM for the IBM Power architecture. A command execution vulnerability exists in IBM AIX version 7.3, VIOS version 4.1, which stems from Perl's failure to properly filter construct command special...

8.4CVSS6.9AI score0.00269EPSS
Exploits0References1
IBM AIX
IBM AIX
added 2024/03/07 3:16 p.m.98 views

Multiple vulnerabilities in IBM Java SDK affect AIX

IBM SECURITY ADVISORY First Issued: Thu Mar 7 15:16:48 CST 2024 The most recent version of this document is available here: https://aix.software.ibm.com/aix/efixes/security/javafeb2024advisory.asc Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect AIX...

7.5CVSS6.6AI score0.01026EPSS
Exploits0
NVD
NVD
added 2024/02/22 12:15 p.m.23 views

CVE-2024-25021

IBM AIX 7.3, VIOS 4.1's Perl implementation could allow a non-privileged local user to exploit a vulnerability to execute arbitrary commands. IBM X-Force ID: 281320...

8.4CVSS8.2AI score0.00269EPSS
Exploits0References2
Prion
Prion
added 2024/02/22 12:15 p.m.27 views

Code injection

IBM AIX 7.3, VIOS 4.1's Perl implementation could allow a non-privileged local user to exploit a vulnerability to execute arbitrary commands. IBM X-Force ID: 281320...

4.6CVSS7.3AI score0.00269EPSS
Exploits0References2
CVE
CVE
added 2024/02/22 11:39 a.m.135 views

CVE-2024-25021

CVE-2024-25021 affects IBM AIX 7.3 and VIOS 4.1 where Perl's runtime could allow a non-privileged local user to execute arbitrary commands. Affected fileset: perl.rte (levels 5.34.0.0–5.34.1.5); remediation recommends perl.rte.5.34.1.6 on AIX 7.3 TL1+ and VIOS 4.1, with an OpenSSL 3.0 dependency....

8.4CVSS8.2AI score0.00269EPSS
Exploits0References2Affected Software2
Rows per page
Query Builder