Lucene search
K

9 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2024/11/07 10:3 p.m.59 views

Security Bulletin: AIX is vulnerable to arbitrary code execution (CVE-2023-36328) due to tcl

Summary Vulnerability in tcl could allow a remote attacker to execute arbitrary code or cause a denial of service CVE-2023-36328. Vulnerability Details CVEID:CVE-2023-36328 DESCRIPTION: libtom libtommath is vulnerable to an integer buffer overflow, caused by improper bounds checking by mpgrow. By...

9.8CVSS8.2AI score0.01254EPSS
Exploits0Affected Software2
IBM AIX
IBM AIX
added 2024/04/24 3:34 p.m.244 views

AIX is vulnerable to arbitrary code execution due to RPM (CVE-2023-7104)

IBM SECURITY ADVISORY First Issued: Wed Apr 24 15:34:58 CDT 2024 The most recent version of this document is available here: https://aix.software.ibm.com/aix/efixes/security/rpmadvisory2.asc Security Bulletin: AIX is vulnerable to arbitrary code execution due to RPM CVE-2023-7104...

7.3CVSS9.4AI score0.01249EPSS
Exploits1
IBM Security Bulletins
IBM Security Bulletins
added 2023/09/07 8:5 p.m.48 views

Security Bulletin: AIX is vulnerable to denial of service due to ISC BIND (CVE-2023-2828)

Summary A vulnerability in ISC BIND could allow a remote attacker to cause a denial of service CVE-2023-2828. AIX uses ISC BIND as part of its DNS functions. Vulnerability Details CVEID:CVE-2023-2828 DESCRIPTION: ISC BIND is vulnerable to a denial of service, caused by a flaw that allows the...

7.5CVSS8AI score0.03776EPSS
Exploits0Affected Software2
IBM Security Bulletins
IBM Security Bulletins
added 2023/07/18 4:40 p.m.93 views

Security Bulletin: AIX is vulnerable to denial of service due to ISC BIND (CVE-2022-3094, CVE-2022-3736, CVE-2022-3924)

Summary A vulnerability in ISC BIND could allow a remote attacker to cause a denial of service CVE-2022-3094, CVE-2022-3736, CVE-2022-3924. AIX uses ISC BIND as part of its DNS functions. Vulnerability Details CVEID:CVE-2022-3094 DESCRIPTION: ISC BIND is vulnerable to a denial of service, caused ...

7.5CVSS7.9AI score0.5017EPSS
Exploits0Affected Software2
IBM AIX
IBM AIX
added 2022/12/22 10:15 a.m.44 views

AIX is affected by a denial of service due to Python

IBM SECURITY ADVISORY First Issued: Thu Dec 22 10:15:28 CST 2022 The most recent version of this document is available here: http://aix.software.ibm.com/aix/efixes/security/pythonadvisory3.asc https://aix.software.ibm.com/aix/efixes/security/pythonadvisory3.asc...

7.5CVSS6.6AI score0.0226EPSS
Exploits1
IBM Security Bulletins
IBM Security Bulletins
added 2020/12/15 8:44 p.m.23 views

Security Bulletin: Vulnerability in ksu affects AIX (CVE-2020-4829)

Summary There is a vulnerability in the ksu user command that affects AIX. Vulnerability Details CVEID: CVE-2020-4829 DESCRIPTION: IBM AIX could allow a local user to exploit a vulnerability in the ksu user command to gain root privileges. CVSS Base score: 8.4 CVSS Temporal Score: See:...

8.4CVSS0.3AI score0.00347EPSS
Exploits0Affected Software1
IBM AIX
IBM AIX
added 2013/07/03 9:33 a.m.45 views

tftp Security Vulnerability

IBM SECURITY ADVISORY First Issued: Wed Jul 3 09:33:57 CDT 2013 | Updated: Mon Oct 14 20:17:56 CDT 2013 | Update: Fixed vulnerable fileset levels | Update: More workarounds and CVSS Vector | Update: Includes VIOS in the vulnerability summary | Updated: Thu Dec 12 12:55:11 CST 2013 | Update: 1...

8.5CVSS6.3AI score0.02961EPSS
Exploits0
Debian CVE
Debian CVE
added 2009/01/07 5:0 p.m.31 views

CVE-2009-0021

NTP 4.2.4 before 4.2.4p5 and 4.2.5 before 4.2.5p150 does not properly check the return value from the OpenSSL EVPVerifyFinal function, which allows remote attackers to bypass validation of the certificate chain via a malformed SSL/TLS signature for DSA and ECDSA keys, a similar vulnerability to...

5CVSS8.5AI score0.03218EPSS
Exploits0
F5 Networks
F5 Networks
added 2007/05/16 12:0 a.m.59 views

SOL6623 - OpenSSL signature vulnerability - CVE-2006-4339

This security advisory describes an OpenSSL signature vulnerability. Forged RSA signatures may be accepted during client certificate validations when the certificates are signed by certain Certificate Authority CA. This flaw could potentially cause F5 products to accept maliciously crafted client...

4.3CVSS7.2AI score0.04894EPSS
Exploits1
Rows per page
Query Builder