Aix@3.1 Security Vulnerabilities and Issues — Aix@3.1 CVE List

Lucene search

IbmAix3.1

39 matches found

CVE•added 2023/04/26 12:15 p.m.•156 views

CVE-2023-26286

IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the AIX runtime services library to execute arbitrary commands. IBM X-Force ID: 248421.

8.4CVSS7.7AI score0.00046EPSS

CVE•added 1999/09/29 4:0 a.m.•147 views

CVE-1999-0513

ICMP messages to broadcast addresses are allowed, allowing for a Smurf attack that can cause a denial of service.

5CVSS7.3AI score0.25583EPSS

CVE•added 2023/04/28 3:15 a.m.•137 views

CVE-2023-28528

IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the invscout command to execute arbitrary commands. IBM X-Force ID: 251207.

8.4CVSS7.8AI score0.02265EPSS

CVE•added 2022/12/23 7:15 p.m.•115 views

CVE-2022-43381

IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1could allow a non-privileged local user to exploit a vulnerability in the AIX SMB client to cause a denial of service. IBM X-Force ID: 238639.

6.2CVSS6AI score0.00016EPSS

CVE•added 2022/12/20 9:15 p.m.•109 views

CVE-2022-43382

IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1could allow a local user with elevated privileges to exploit a vulnerability in the lpd daemon to cause a denial of service. IBM X-Force ID: 238641.

6.2CVSS5.2AI score0.00015EPSS

CVE•added 2023/08/24 2:15 p.m.•108 views

CVE-2023-40371

IBM AIX 7.2, 7.3, VIOS 3.1's OpenSSH implementation could allow a non-privileged local user to access files outside of those allowed due to improper access controls. IBM X-Force ID: 263476.

6.2CVSS5.8AI score0.0001EPSS

CVE•added 2024/05/16 5:16 p.m.•98 views

CVE-2024-27260

IBM AIX could 7.2, 7.3, VIOS 3.1, and VIOS 4.1 allow a non-privileged local user to exploit a vulnerability in the invscout command to execute arbitrary commands. IBM X-Force ID: 283985.

8.4CVSS7AI score0.0002EPSS

CVE•added 2022/12/23 7:15 p.m.•89 views

CVE-2022-39165

IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1could allow a non-privileged local user to exploit a vulnerability in CAA to cause a denial of service. IBM X-Force ID: 235183.

6.2CVSS5.9AI score0.00014EPSS

CVE•added 2022/12/23 8:15 p.m.•88 views

CVE-2022-39164

IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1could allow a non-privileged local user to exploit a vulnerability in the AIX kernel to cause a denial of service. IBM X-Force ID: 235181.

6.2CVSS5.8AI score0.00017EPSS

CVE•added 2022/12/23 8:15 p.m.•88 views

CVE-2022-43849

IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1could allow a non-privileged local user to exploit a vulnerability in the AIX pfcdd kernel extension to cause a denial of service. IBM X-Force ID: 239170.

6.2CVSS5.8AI score0.00016EPSS

CVE•added 2024/12/07 1:19 p.m.•85 views

CVE-2024-47115

IBM AIX 7.2, 7.3 and VIOS 3.1 and 4.1 could allow a local user to execute arbitrary commands on the system due to improper neutralization of input.

7.8CVSS7.9AI score0.00052EPSS

CVE•added 2022/12/23 8:15 p.m.•83 views

CVE-2022-43848

IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the AIX perfstat kernel extension to cause a denial of service. IBM X-Force ID: 239169.

6.2CVSS5.8AI score0.00016EPSS

CVE•added 2024/05/07 9:15 p.m.•83 views

CVE-2024-27273

IBM AIX's Unix domain (AIX 7.2, 7.3, VIOS 3.1, and VIOS 4.1) datagram socket implementation could potentially expose applications using Unix domain datagram sockets with SO_PEERID operation and may lead to privilege escalation. IBM X-Force ID: 284903.

8.1CVSS7.7AI score0.00017EPSS

CVE•added 2022/12/23 7:15 p.m.•69 views

CVE-2022-43380

IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the AIX NFS kernel extension to cause a denial of service. IBM X-Force ID: 238640.

6.2CVSS5.8AI score0.00016EPSS

CVE•added 2022/12/23 7:15 p.m.•67 views

CVE-2022-40233

IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the AIX TCP/IP kernel extension to cause a denial of service. IBM X-Force ID: 235599.

6.2CVSS5.8AI score0.00025EPSS

CVE•added 2022/12/23 8:15 p.m.•67 views

CVE-2022-41290

IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the rm_rlcache_file command to obtain root privileges. IBM X-Force ID: 236690.

8.4CVSS7.9AI score0.00021EPSS

CVE•added 1999/09/29 4:0 a.m.•61 views

CVE-1999-0022

Local user gains root privileges via buffer overflow in rdist, via expstr() function.

7.8CVSS7.4AI score0.00254EPSS

CVE•added 2023/12/13 11:15 p.m.•59 views

CVE-2023-45166

IBM AIX 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the piodmgrsu command to obtain elevated privileges. IBM X-Force ID: 267964.

8.4CVSS7.5AI score0.00024EPSS

CVE•added 1999/09/29 4:0 a.m.•57 views

CVE-1999-0048

Talkd, when given corrupt DNS information, can be used to execute arbitrary commands with root privileges.

10CVSS8.3AI score0.01283EPSS

CVE•added 2024/01/11 2:15 a.m.•57 views

CVE-2023-45175

IBM AIX 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the TCP/IP kernel extension to cause a denial of service. IBM X-Force ID: 267973.

6.2CVSS5AI score0.00017EPSS

CVE•added 2023/01/18 7:15 p.m.•56 views

CVE-2022-47990

IBM AIX 7.1, 7.2, 7.3 and VIOS , 3.1 could allow a non-privileged local user to exploit a vulnerability in X11 to cause a buffer overflow that could result in a denial of service or arbitrary code execution. IBM X-Force ID: 243556.

7.8CVSS7.1AI score0.00016EPSS

CVE•added 2023/12/13 11:15 p.m.•56 views

CVE-2023-45170

IBM AIX 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the piobe command to escalate privileges or cause a denial of service. IBM X-Force ID: 267968.

8.4CVSS7.8AI score0.00033EPSS

CVE•added 2006/06/15 8:0 p.m.•55 views

CVE-1999-1589

Unspecified vulnerability in crontab in IBM AIX 3.2 allows local users to gain root privileges via unknown attack vectors.

7.2CVSS6.7AI score0.00057EPSS

CVE•added 2024/12/25 3:15 p.m.•54 views

CVE-2024-52906

IBM AIX 7.2, 7.3, VIOS 3.1, and 4.1 could allow a non-privileged local user to exploit a vulnerability in the TCP/IP kernel extension to cause a denial of service.

5.5CVSS5.2AI score0.0002EPSS

CVE•added 1999/09/29 4:0 a.m.•52 views

CVE-1999-0113

Some implementations of rlogin allow root access if given a -froot parameter.

10CVSS6.8AI score0.18663EPSS

CVE•added 2023/12/13 11:15 p.m.•52 views

CVE-2023-45174

IBM AIX 7.2, 7.3, and VIOS 3.1 could allow a privileged local user to exploit a vulnerability in the qdaemon command to escalate privileges or cause a denial of service. IBM X-Force ID: 267972.

8.4CVSS7.7AI score0.00033EPSS

CVE•added 2024/12/25 3:15 p.m.•52 views

CVE-2024-47102

IBM AIX 7.2, 7.3, VIOS 3.1, and 4.1 could allow a non-privileged local user to exploit a vulnerability in the AIX perfstat kernel extension to cause a denial of service.

5.5CVSS5.2AI score0.00029EPSS

CVE•added 2001/05/07 4:0 a.m.•50 views

CVE-1999-0115

AIX bugfiler program allows local users to gain root access.

7.2CVSS7.4AI score0.01244EPSS

CVE•added 2010/05/20 5:30 p.m.•49 views

CVE-2010-1039

Format string vulnerability in the _msgout function in rpc.pcnfsd in IBM AIX 6.1, 5.3, and earlier; IBM VIOS 2.1, 1.5, and earlier; NFS/ONCplus B.11.31_09 and earlier on HP HP-UX B.11.11, B.11.23, and B.11.31; and SGI IRIX 6.5 allows remote attackers to execute arbitrary code via an RPC request con...

10CVSS7.4AI score0.26547EPSS

CVE•added 1999/09/29 4:0 a.m.•45 views

CVE-1999-0337

AIX batch queue (bsh) allows local and remote users to gain additional privileges when network printing is enabled.

7.5CVSS7.6AI score0.00767EPSS

CVE•added 2024/01/11 3:15 a.m.•44 views

CVE-2023-45169

IBM AIX 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the pmsvcs kernel extension to cause a denial of service. IBM X-Force ID: 267967.

6.2CVSS5AI score0.00025EPSS

CVE•added 2024/01/11 3:15 a.m.•43 views

CVE-2023-45171

IBM AIX 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the kernel to cause a denial of service. IBM X-Force ID: 267969.

6.2CVSS5AI score0.00024EPSS

CVE•added 2023/12/01 3:15 p.m.•41 views

CVE-2023-45168

IBM AIX 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the invscout command to execute arbitrary commands. IBM X-Force ID: 267966.

8.4CVSS7.9AI score0.00069EPSS

CVE•added 1999/09/29 4:0 a.m.•40 views

CVE-1999-0117

AIX passwd allows local users to gain root access.

7.2CVSS7.4AI score0.00064EPSS

CVE•added 1999/09/29 4:0 a.m.•38 views

CVE-1999-0627

The rexd service is running, which uses weak authentication that can allow an attacker to execute commands.

7.2AI score0.01558EPSS

CVE•added 2000/01/04 5:0 a.m.•38 views

CVE-1999-0745

Buffer overflow in Source Code Browser Program Database Name Server Daemon (pdnsd) for the IBM AIX C Set ++ compiler.

10CVSS7.3AI score0.25839EPSS

CVE•added 2001/09/12 4:0 a.m.•35 views

CVE-1999-1552

dpsexec (DPS Server) when running under XDM in IBM AIX 3.2.5 and earlier does not properly check privileges, which allows local users to overwrite arbitrary files and gain privileges.

7.2CVSS7.2AI score0.00149EPSS

CVE•added 2023/12/19 11:15 p.m.•33 views

CVE-2023-45172

IBM AIX 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in AIX windows to cause a denial of service. IBM X-Force ID: 267970.

6.2CVSS5.6AI score0.00016EPSS

CVE•added 2024/01/11 2:15 a.m.•33 views

CVE-2023-45173

IBM AIX 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the NFS kernel extension to cause a denial of service. IBM X-Force ID: 267971.

6.2CVSS5AI score0.00025EPSS