55 matches found
AIX : Multiple Vulnerabilities (IJ43891)
The version of AIX installed on the remote host is prior to APAR IJ43891. It is, therefore, affected by multiple vulnerabilities as referenced in the IJ43891 advisory. - IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the AIX NFS kernel...
PT-2022-24787 · Ibm · Vios +1
Name of the Vulnerable Software and Affected Versions: IBM AIX versions 7.1 through 7.3 VIOS version 3.1 Description: The issue allows a non-privileged local user to exploit a vulnerability in the CAA or the AIX pfcdd kernel extension to cause a denial of service. Recommendations: For IBM AIX...
Malicious code in softomate-caa-module (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 37fc0a9f0d92e113a8543567f176482b40a2310ca6930700c78602b50ee5bd1b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2022-6202 Malicious code in softomate-caa-module (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 37fc0a9f0d92e113a8543567f176482b40a2310ca6930700c78602b50ee5bd1b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
IBM AIX Input Validation Error Vulnerability
IBM AIX is an open standards-based UNIX operating system developed by IBM for the IBM Power architecture. IBM AIX has an input validation error vulnerability, which stems from a problem with CAA/Kernel and can be exploited by an attacker to trigger a denial of service...
IBM AIX Input Validation Error Vulnerability (CNVD-2022-17017)
IBM AIX is an open standards-based UNIX operating system developed by IBM for the IBM Power architecture. IBM AIX has an input validation error vulnerability that can be exploited by an attacker to cause a fatal AIX error through the CAA kernel, triggering a denial of service...
CVE-2022-22350
IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in CAA to cause a denial of service. IBM X-Force ID: 220394...
CVE-2022-22350
IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in CAA to cause a denial of service. IBM X-Force ID: 220394...
Code injection
IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in CAA to cause a denial of service. IBM X-Force ID: 220394...
CVE-2022-22350
CVE-2022-22350 affects IBM AIX 7.1, 7.2, 7.3 and VIOS 3.1, where a non-privileged local user can exploit a vulnerability in CAA to cause a denial of service. This is supported by multiple sources (NVD entry and CNVD/CVE records) describing a local-event DoS condition via the CAA kernel; explicit ...
CVE-2022-22350
IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in CAA to cause a denial of service. IBM X-Force ID: 220394...
AIX : Multiple Vulnerabilities (IJ36596)
The version of AIX installed on the remote host is prior to APAR IJ36596. It is, therefore, affected by multiple vulnerabilities as referenced in the IJ36596 advisory. - IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in CAA to cause a denial...
AIX : Multiple Vulnerabilities (IJ37355)
The version of AIX installed on the remote host is prior to APAR IJ37355. It is, therefore, affected by multiple vulnerabilities as referenced in the IJ37355 advisory. - IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in CAA to cause a denial...
AIX : Multiple Vulnerabilities (IJ36682)
The version of AIX installed on the remote host is prior to APAR IJ36682. It is, therefore, affected by multiple vulnerabilities as referenced in the IJ36682 advisory. - IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in CAA to cause a denial...
AIX : Multiple Vulnerabilities (IJ37496)
The version of AIX installed on the remote host is prior to APAR IJ37496. It is, therefore, affected by multiple vulnerabilities as referenced in the IJ37496 advisory. - IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in CAA to cause a denial...
AIX : Multiple Vulnerabilities (IJ37512)
The version of AIX installed on the remote host is prior to APAR IJ37512. It is, therefore, affected by multiple vulnerabilities as referenced in the IJ37512 advisory. - IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in CAA to cause a denial...
Security Bulletin: Vulnerabilities in AIX CAA (CVE-2022-22350, CVE-2021-38996)
Summary There are multiple vulnerabilities in AIX CAA. Vulnerability Details CVEID: CVE-2022-22350 DESCRIPTION: IBM AIX could allow a non-privileged local user to exploit a vulnerability in CAA to cause a denial of service. CVSS Base score: 6.2 CVSS Temporal Score: See:...
Vulnerabilities in AIX CAA
IBM SECURITY ADVISORY First Issued: Tue Mar 1 09:31:15 CST 2022 The most recent version of this document is available here: http://aix.software.ibm.com/aix/efixes/security/caaadvisory2.asc https://aix.software.ibm.com/aix/efixes/security/caaadvisory2.asc...
bind security update
32:9.8.2-0.68.rc1.0.3.8 - Backport fix for CVE-2018-5741 Orabug: 33496185 32:9.8.2-0.68.rc1.0.2.8 - Backport possible assertion failure on DNAME processing CVE-2021-25215 32:9.8.2-0.68.rc1.0.1.8 - Backport the fix for buffer overflow CVE-2020-8625 Orabug: 32588749 32:9.8.2-0.68.rc1.8 - Fix...
Sifchain: Misconfiguration Certificate Authority Authorization Rule
Hello,Sifchain Security Team, I found a bug called Missing CAA. Certificate Authority Authorization supported by LetsEncrypt and other CAs allows a domain owner to specify which Certificate Authorities should be allowed to issue certificates for the domain. All CAA-compliant certificate authoriti...