AIX is vulnerable to potential code execution (CVE-2025-61984 CVE-2025-61985) due to OpenSSH

IBM SECURITY ADVISORY First Issued: Tue Jan 6 13:47:51 CST 2026 The most recent version of this document is available here: https://aix.software.ibm.com/aix/efixes/security/opensshadvisory20.asc Security Bulletin: AIX is vulnerable to potential code execution CVE-2025-61984, CVE-2025-61985 due to...

PT-2025-46921

Name of the Vulnerable Software and Affected Versions IBM AIX versions 7.2 and 7.3 IBM VIOS versions 3.1 and 4.1 Description The software stores NIM private keys used in NIM environments in an insecure manner, making them susceptible to unauthorized access by an attacker employing man-in-the-midd...

EUVD-2016-6972

Malware in sbrugna...

EUVD-2000-0572

Malware in sbrugna...

CVE-2003-0954

Buffer overflow in rcp for AIX 4.3.3, 5.1 and 5.2 allows local users to gain privileges...

IBM AIX 安全漏洞

IBM AIX is an open standards-based UNIX operating system developed for the IBM Power architecture by International Business Machines IBM. A security vulnerability exists in IBM AIX versions 7.2 and 7.3, which stems from improper control of the nimsh service SSL/TLS protection mechanism process an...

PT-2024-1202 · Ibm · Aix +2

Name of the Vulnerable Software and Affected Versions: IBM AIX versions 7.2 through 7.3 VIOS version 3.1 Description: The issue is related to insufficient input validation in the TCP/IP kernel extension of the AIX operating system. This could allow a non-privileged local user to exploit the...

PT-2023-8366 · Ibm · Aix +2

Name of the Vulnerable Software and Affected Versions: IBM AIX versions 7.2 through 7.3 VIOS version 3.1 Description: The issue is related to insufficient input validation in the AIX operating system, which could allow a non-privileged local user to exploit a vulnerability in AIX windows and caus...

CVE-2022-36768

IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the invscout command to obtain root privileges. IBM X-Force ID: 232014...

PT-2022-23612 · Ibm · Ibm Aix +1

Name of the Vulnerable Software and Affected Versions: IBM AIX versions 7.1 through 7.3 VIOS version 3.1 Description: A vulnerability exists in the invscout command that could allow a non-privileged local user to obtain root privileges. Recommendations: For IBM AIX versions 7.1 through 7.3,...

CVE-2021-38994

IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the AIX kernel to cause a denial of service. IBM X-Force ID: 213072...

CVE-2021-38995

IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the AIX kernel to cause a denial of service. IBM X-Force ID: 213073...

CVE-2021-29801

IBM AIX 7.1, 7.2, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the kernel to gain root privileges. IBM X-Force ID: 203977...

CVE-2004-0243

AIX 4.3.3 through AIX 5.1, when direct remote login is disabled, displays a different message if the password is correct, which allows remote attackers to guess the password via brute force methods...

CVE-2003-0119

The secldapclntd daemon in AIX 4.3, 5.1 and 5.2 uses an Internet socket when communicating with the loadmodule, which allows remote attackers to directly connect to the daemon and conduct unauthorized activities...

libIM.a buffer overflow vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 IBM SECURITY ADVISORY First Issued: Wed Feb 12 11:00:00 CST 2003 =========================================================================== VULNERABILITY SUMMARY VULNERABILITY: libIM.a buffer overflow vulnerability. PLATFORMS: AIX 4.3, 5.1 and 5.2...

aix allows clearing the interface stats

hallo, aix versions 4.x.x will let a non-priveledged user clear the network interface statistics, thus annoying system administrators and interfering with the system scripts that depend on those numbers :- $ netstat -in -- shows stats $ netstat -Zi -- clears them without checking the uid ibm was...