15494 matches found
AIX : Multiple Vulnerabilities (IJ57231)
The version of AIX installed on the remote host is prior to APAR IJ57231. It is, therefore, affected by multiple vulnerabilities as referenced in the IJ57231 advisory. - A flaw was identified in the X.Org X server's X Keyboard Xkb extension where improper bounds checking in the XkbSetCompatMap...
Security Bulletin: Multiple vulnerabilities impact AIX/VIOS due to OpenSSL
Summary Vulnerabilities in OpenSSL could allow an attacker to potentially execute arbitrary code CVE-2025-15467 or cause a denial of service CVE-2025-68160, CVE-2025-69418, CVE-2025-69419, CVE-2025-69420, CVE-2025-69421, CVE-2026-22795, CVE-2026-22796. OpenSSL is used by AIX as part of AIX's secu...
Multiple vulnerabilities impact AIX due to OpenSSL
IBM SECURITY ADVISORY First Issued: Mon Mar 9 14:38:01 CDT 2026 The most recent version of this document is available here: https://aix.software.ibm.com/aix/efixes/security/openssladvisory46.asc Security Bulletin: Multiple vulnerabilities impact AIX due to OpenSSL...
GHSA-5HWF-RC88-82XM Fickling missing RCE-capable modules in UNSAFE_IMPORTS
Assessment The modules uuid, osxsupport and aixsupport were added to the blocklist of unsafe imports https://github.com/trailofbits/fickling/commit/ffac3479dbb97a7a1592d85991888562d34dd05b. Original report Summary fickling's UNSAFEIMPORTS blocklist is missing at least 3 stdlib modules that provid...
Security Bulletin: AIX Xorg X Server is vulnerable to memory corruption or a denial of service (CVE-2025-62230, CVE-2025-62231)
Summary Updated Feb 24 2026: New iFix for 7.3 TL3 SP2 provided with correct fileset prereqs. Updated the affected fileset levels to show that 7.3 TL3 SP2 is vulnerable. Vulnerabilities in Xorg X Server could cause a memory corruption or denial of service CVE-2025-62230, CVE-2025-62231...
Informix-INFORMIXDIR-bof-exploit
informix-informixdir-bof A root shell exploit for a stack-bas...
AIX : Multiple Vulnerabilities (IJ57162)
The version of AIX installed on the remote host is prior to APAR IJ57162. It is, therefore, affected by multiple vulnerabilities as referenced in the IJ57162 advisory. - A flaw was identified in the X.Org X server's X Keyboard Xkb extension where improper bounds checking in the XkbSetCompatMap...
AIX : Multiple Vulnerabilities (IJ57232)
The version of AIX installed on the remote host is prior to APAR IJ57232. It is, therefore, affected by multiple vulnerabilities as referenced in the IJ57232 advisory. - A flaw was identified in the X.Org X server's X Keyboard Xkb extension where improper bounds checking in the XkbSetCompatMap...
AIX : Multiple Vulnerabilities (IJ57128)
The version of AIX installed on the remote host is prior to APAR IJ57128. It is, therefore, affected by multiple vulnerabilities as referenced in the IJ57128 advisory. - A flaw was identified in the X.Org X server's X Keyboard Xkb extension where improper bounds checking in the XkbSetCompatMap...
AIX Xorg X Server is vulnerable to memory corruption or a denial of service (CVE-2025-62230 CVE-2025-62231)
IBM SECURITY ADVISORY First Issued: Thu Feb 19 16:07:09 CST 2026 |Updated: Tue Feb 24 10:50:50 CST 2026 |Update: New iFix for 7.3 TL3 SP2 provided with correct fileset prereqs. | Updated the affected fileset levels to show that 7.3 TL3 SP2 is | vulnerable. The most recent version of this document...
AIX (IJ57276)
The version of AIX installed on the remote host is prior to APAR IJ57276. It is, therefore, affected by a vulnerability as referenced in the IJ57276 advisory. - A vulnerability was found in libxml2 up to 2.14.5. It has been declared as problematic. This vulnerability affects the function...
AIX (IJ57291)
The version of AIX installed on the remote host is prior to APAR IJ57291. It is, therefore, affected by a vulnerability as referenced in the IJ57291 advisory. - A vulnerability was found in libxml2 up to 2.14.5. It has been declared as problematic. This vulnerability affects the function...
AIX (IJ57292)
The version of AIX installed on the remote host is prior to APAR IJ57292. It is, therefore, affected by a vulnerability as referenced in the IJ57292 advisory. - A vulnerability was found in libxml2 up to 2.14.5. It has been declared as problematic. This vulnerability affects the function...
AIX (IJ57282)
The version of AIX installed on the remote host is prior to APAR IJ57282. It is, therefore, affected by a vulnerability as referenced in the IJ57282 advisory. - A vulnerability was found in libxml2 up to 2.14.5. It has been declared as problematic. This vulnerability affects the function...
Security Bulletin: Multiple vulnerabilities impact AIX/VIOS due to ISC BIND (CVE-2025-40778, CVE-2025-40780, CVE-2025-8677)
Summary Vulnerabilities in ISC BIND could allow an attacker to inject forged data into the cache CVE-2025-40778, predict the source port and query ID that BIND will use CVE-2025-40780, or cause CPU exhaustion CVE-2025-8677. AIX uses ISC BIND as as part of its DNS functions. Vulnerability Details...
Multiple vulnerabilities impact AIX due to ISC BIND (CVE-2025-40778 CVE-2025-40780 CVE-2025-8677)
IBM SECURITY ADVISORY First Issued: Wed Feb 18 08:49:11 CST 2026 The most recent version of this document is available here: https://aix.software.ibm.com/aix/efixes/security/bindadvisory29.asc Security Bulletin: Multiple vulnerabilities impact AIX due to ISC BIND CVE-2025-40778, CVE-2025-40780,...
Security Bulletin: AIX/VIOS is vulnerable to denial of service and possible code execution due to Perl (WS-2025-0004)
Summary Vulnerability in Perl could allow an attacker to cause a denial of service or possibly execute code WS-2025-0004. AIX uses Perl in various operating system components. Vulnerability Details ID:WS-2025-0004 DESCRIPTION: Fix a class of false positives where input should have been rejected...
AIX is vulnerable to denial of service and possible code execution due to Perl (WS-2025-0004)
IBM SECURITY ADVISORY First Issued: Thu Feb 5 15:13:54 CST 2026 The most recent version of this document is available here: https://aix.software.ibm.com/aix/efixes/security/perladvisory12.asc Security Bulletin: AIX is vulnerable to denial of service and possible code execution due to Perl...
EUVD-2026-4203
openCryptoki is a PKCS11 library and provides tooling for Linux and AIX. Versions 2.3.2 and above are vulnerable to symlink-following when running in privileged contexts. A token-group user can redirect file operations to arbitrary filesystem targets by planting symlinks in group-writable token...
Security Bulletin: AIX/VIOS is vulnerable to an out-of-bounds read (CVE-2025-9230, CVE-2025-9232) due to OpenSSL
Summary Vulnerabilities in OpenSSL could allow an attacker to trigger an out-of-bounds read CVE-2025-9230, CVE-2025-9232. OpenSSL is used by AIX as part of AIX's secure network communications. Vulnerability Details CVEID:CVE-2025-9230 DESCRIPTION: Issue summary: An application trying to decrypt C...