Aix@7.2 Security Vulnerabilities and Issues — Aix@7.2 CVE List

Lucene search

IbmAix7.2

58 matches found

CVE•added 2023/04/26 12:15 p.m.•156 views

CVE-2023-26286

IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the AIX runtime services library to execute arbitrary commands. IBM X-Force ID: 248421.

8.4CVSS7.7AI score0.00046EPSS

CVE•added 2022/02/24 5:15 p.m.•147 views

CVE-2021-38995

IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the AIX kernel to cause a denial of service. IBM X-Force ID: 213073.

6.2CVSS5AI score0.00043EPSS

CVE•added 2022/03/01 5:15 p.m.•138 views

CVE-2021-38955

IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a local user with elevated privileges to cause a denial of service due to a file creation vulnerability in the audit commands. IBM X-Force ID: 211825.

4.4CVSS4.4AI score0.00039EPSS

CVE•added 2023/04/28 3:15 a.m.•137 views

CVE-2023-28528

IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the invscout command to execute arbitrary commands. IBM X-Force ID: 251207.

8.4CVSS7.8AI score0.02265EPSS

CVE•added 2022/03/02 5:15 p.m.•129 views

CVE-2022-22350

IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in CAA to cause a denial of service. IBM X-Force ID: 220394.

6.2CVSS5.1AI score0.00043EPSS

CVE•added 2025/03/18 5:15 p.m.•126 views

CVE-2024-56346

IBM AIX 7.2 and 7.3 nimesis NIM master service could allow a remote attacker to execute arbitrary commands due to improper process controls.

10CVSS9.8AI score0.0015EPSS

CVE•added 2022/02/24 5:15 p.m.•118 views

CVE-2021-38994

IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the AIX kernel to cause a denial of service. IBM X-Force ID: 213072.

6.2CVSS5AI score0.00043EPSS

CVE•added 2022/12/23 7:15 p.m.•115 views

CVE-2022-43381

IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1could allow a non-privileged local user to exploit a vulnerability in the AIX SMB client to cause a denial of service. IBM X-Force ID: 238639.

6.2CVSS6AI score0.00016EPSS

CVE•added 2022/12/20 9:15 p.m.•109 views

CVE-2022-43382

IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1could allow a local user with elevated privileges to exploit a vulnerability in the lpd daemon to cause a denial of service. IBM X-Force ID: 238641.

6.2CVSS5.2AI score0.00015EPSS

CVE•added 2023/08/24 2:15 p.m.•108 views

CVE-2023-40371

IBM AIX 7.2, 7.3, VIOS 3.1's OpenSSH implementation could allow a non-privileged local user to access files outside of those allowed due to improper access controls. IBM X-Force ID: 263476.

6.2CVSS5.8AI score0.0001EPSS

CVE•added 2024/05/16 5:16 p.m.•98 views

CVE-2024-27260

IBM AIX could 7.2, 7.3, VIOS 3.1, and VIOS 4.1 allow a non-privileged local user to exploit a vulnerability in the invscout command to execute arbitrary commands. IBM X-Force ID: 283985.

8.4CVSS7AI score0.0002EPSS

CVE•added 2022/03/02 5:15 p.m.•93 views

CVE-2021-38996

IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the AIX kernel to cause a denial of service. IBM X-Force ID: 213076.

6.2CVSS5AI score0.00043EPSS

CVE•added 2025/03/18 5:15 p.m.•92 views

CVE-2024-56347

IBM AIX 7.2 and 7.3 nimsh service SSL/TLS protection mechanisms could allow a remote attacker to execute arbitrary commands due to improper process controls.

9.6CVSS9.6AI score0.00145EPSS

CVE•added 2022/12/23 7:15 p.m.•89 views

CVE-2022-39165

IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1could allow a non-privileged local user to exploit a vulnerability in CAA to cause a denial of service. IBM X-Force ID: 235183.

6.2CVSS5.9AI score0.00014EPSS

CVE•added 2022/02/25 6:15 p.m.•88 views

CVE-2021-38993

IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the smbcd daemon to cause a denial of service. IBM X-Force ID: 212962.

6.2CVSS5.2AI score0.00038EPSS

CVE•added 2022/06/15 4:15 p.m.•88 views

CVE-2022-22444

IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a local user to exploit a vulnerability in the lpd daemon to cause a denial of service. IBM X-Force ID: 224444.

6.2CVSS5.1AI score0.00074EPSS

CVE•added 2022/12/23 8:15 p.m.•88 views

CVE-2022-39164

IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1could allow a non-privileged local user to exploit a vulnerability in the AIX kernel to cause a denial of service. IBM X-Force ID: 235181.

6.2CVSS5.8AI score0.00017EPSS

CVE•added 2022/12/23 8:15 p.m.•88 views

CVE-2022-43849

IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1could allow a non-privileged local user to exploit a vulnerability in the AIX pfcdd kernel extension to cause a denial of service. IBM X-Force ID: 239170.

6.2CVSS5.8AI score0.00016EPSS

CVE•added 2024/12/07 1:19 p.m.•85 views

CVE-2024-47115

IBM AIX 7.2, 7.3 and VIOS 3.1 and 4.1 could allow a local user to execute arbitrary commands on the system due to improper neutralization of input.

7.8CVSS7.9AI score0.00052EPSS

CVE•added 2022/09/13 9:15 p.m.•83 views

CVE-2022-34356

IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the AIX kernel to obtain root privileges. IBM X-Force ID: 230502.

8.4CVSS7AI score0.00029EPSS

CVE•added 2022/12/23 8:15 p.m.•83 views

CVE-2022-43848

IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the AIX perfstat kernel extension to cause a denial of service. IBM X-Force ID: 239169.

6.2CVSS5.8AI score0.00016EPSS

CVE•added 2024/05/07 9:15 p.m.•83 views

CVE-2024-27273

IBM AIX's Unix domain (AIX 7.2, 7.3, VIOS 3.1, and VIOS 4.1) datagram socket implementation could potentially expose applications using Unix domain datagram sockets with SO_PEERID operation and may lead to privilege escalation. IBM X-Force ID: 284903.

8.1CVSS7.7AI score0.00017EPSS

CVE•added 2017/10/04 1:29 a.m.•79 views

CVE-2017-1541

A flaw in the AIX 5.3, 6.1, 7.1, and 7.2 JRE/SDK installp and updatep packages prevented the java.security, java.policy and javaws.policy files from being updated correctly. IBM X-Force ID: 130809.

7.5CVSS7.3AI score0.0046EPSS

CVE•added 2018/02/07 5:29 p.m.•78 views

CVE-2017-1692

IBM AIX 5.3, 6.1, 7.1, and 7.2 contains an unspecified vulnerability that would allow a locally authenticated user to obtain root level privileges. IBM X-Force ID: 134067.

7.8CVSS7.1AI score0.00055EPSS

CVE•added 2021/08/02 3:15 p.m.•78 views

CVE-2021-29741

IBM AIX 7.1, 7.2, and VIOS 3.1 could allow a local user to exploit a vulnerability in Korn Shell (ksh) to gain root privileges. IBM X-Force ID: 201478.

8.4CVSS7.3AI score0.00039EPSS

CVE•added 2017/02/15 7:59 p.m.•76 views

CVE-2016-8972

IBM AIX 6.1, 7.1, and 7.2 could allow a local user to gain root privileges using a specially crafted command within the bellmail client. IBM APARs: IV91006, IV91007, IV91008, IV91010, IV91011.

7.8CVSS7.5AI score0.00627EPSS

CVE•added 2021/08/26 8:15 p.m.•69 views

CVE-2021-29801

IBM AIX 7.1, 7.2, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the kernel to gain root privileges. IBM X-Force ID: 203977.

8.4CVSS7.2AI score0.00034EPSS

CVE•added 2022/12/23 7:15 p.m.•69 views

CVE-2022-43380

IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the AIX NFS kernel extension to cause a denial of service. IBM X-Force ID: 238640.

6.2CVSS5.8AI score0.00016EPSS

CVE•added 2020/12/10 11:15 p.m.•67 views

CVE-2020-4829

IBM AIX 7.1, 7.2, and VIOS 3.1 could allow a local user to exploit a vulnerability in the ksu user command to gain root privileges. IBM X-Force ID: 189960.

8.4CVSS7.5AI score0.00038EPSS

CVE•added 2022/12/23 7:15 p.m.•67 views

CVE-2022-40233

IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the AIX TCP/IP kernel extension to cause a denial of service. IBM X-Force ID: 235599.

6.2CVSS5.8AI score0.00025EPSS

CVE•added 2022/12/23 8:15 p.m.•67 views

CVE-2022-41290

IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the rm_rlcache_file command to obtain root privileges. IBM X-Force ID: 236690.

8.4CVSS7.9AI score0.00021EPSS

CVE•added 2021/08/26 8:15 p.m.•65 views

CVE-2021-29862

IBM AIX 7.1, 7.2, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the AIX kernel to cause a denial of service. IBM X-Force ID: 206086.

6.2CVSS5.7AI score0.00041EPSS

CVE•added 2017/02/15 7:59 p.m.•62 views

CVE-2016-6079

IBM AIX 5.3, 6.1, 7.1, and 7.2 contains an unspecified vulnerability that would allow a locally authenticated user to obtain root level privileges. IBM APARs: IV88658, IV87981, IV88419, IV87640, IV88053.

7.8CVSS7.2AI score0.02047EPSS

CVE•added 2022/01/11 5:15 p.m.•62 views

CVE-2021-38991

IBM AIX 7.0, 7.1, 7.2, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the lscore command which could lead to code execution. IBM X-Force ID: 212953.

8.4CVSS7.4AI score0.00081EPSS

CVE•added 2017/02/02 10:59 p.m.•61 views

CVE-2017-1093

IBM AIX 6.1, 7.1, and 7.2 could allow a local user to exploit a vulnerability in the bellmail binary to gain root privileges.

7.8CVSS7.4AI score0.00047EPSS

CVE•added 2021/08/26 8:15 p.m.•59 views

CVE-2021-29727

IBM AIX 7.1, 7.2, and VIOS 3.1 could allow a local user to exploit a vulnerability in the AIX kernel to cause a denial of service. IBM X-Force ID: 201106.

6.2CVSS5.7AI score0.00037EPSS

CVE•added 2023/12/13 11:15 p.m.•59 views

CVE-2023-45166

IBM AIX 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the piodmgrsu command to obtain elevated privileges. IBM X-Force ID: 267964.

8.4CVSS7.5AI score0.00024EPSS

CVE•added 2022/09/13 9:15 p.m.•58 views

CVE-2022-36768

IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the invscout command to obtain root privileges. IBM X-Force ID: 232014.

8.4CVSS7.2AI score0.00029EPSS

CVE•added 2024/01/11 2:15 a.m.•57 views

CVE-2023-45175

IBM AIX 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the TCP/IP kernel extension to cause a denial of service. IBM X-Force ID: 267973.

6.2CVSS5AI score0.00017EPSS

CVE•added 2023/01/18 7:15 p.m.•56 views

CVE-2022-47990

IBM AIX 7.1, 7.2, 7.3 and VIOS , 3.1 could allow a non-privileged local user to exploit a vulnerability in X11 to cause a buffer overflow that could result in a denial of service or arbitrary code execution. IBM X-Force ID: 243556.

7.8CVSS7.1AI score0.00016EPSS

CVE•added 2023/12/13 11:15 p.m.•56 views

CVE-2023-45170

IBM AIX 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the piobe command to escalate privileges or cause a denial of service. IBM X-Force ID: 267968.

8.4CVSS7.8AI score0.00033EPSS

CVE•added 2024/12/25 3:15 p.m.•54 views

CVE-2024-52906

IBM AIX 7.2, 7.3, VIOS 3.1, and 4.1 could allow a non-privileged local user to exploit a vulnerability in the TCP/IP kernel extension to cause a denial of service.

5.5CVSS5.2AI score0.0002EPSS

CVE•added 2016/08/08 1:59 a.m.•53 views

CVE-2016-0266

IBM AIX 5.3, 6.1, 7.1, and 7.2 and VIOS 2.2.x do not default to the latest TLS version, which makes it easier for man-in-the-middle attackers to obtain sensitive information via unspecified vectors.

4.3CVSS3.7AI score0.007EPSS

CVE•added 2023/12/22 4:15 p.m.•52 views

CVE-2023-45165

IBM AIX 7.2 and 7.3 could allow a non-privileged local user to exploit a vulnerability in the AIX SMB client to cause a denial of service. IBM X-Force ID: 267963.

6.2CVSS5.4AI score0.00024EPSS

CVE•added 2023/12/13 11:15 p.m.•52 views

CVE-2023-45174

IBM AIX 7.2, 7.3, and VIOS 3.1 could allow a privileged local user to exploit a vulnerability in the qdaemon command to escalate privileges or cause a denial of service. IBM X-Force ID: 267972.

8.4CVSS7.7AI score0.00033EPSS

CVE•added 2024/12/25 3:15 p.m.•52 views

CVE-2024-47102

IBM AIX 7.2, 7.3, VIOS 3.1, and 4.1 could allow a non-privileged local user to exploit a vulnerability in the AIX perfstat kernel extension to cause a denial of service.

5.5CVSS5.2AI score0.00029EPSS

CVE•added 2018/02/13 8:29 p.m.•50 views

CVE-2018-1383

A software logic bug creates a vulnerability in an AIX 6.1, 7.1, and 7.2 daemon which could allow a user with root privileges on one system, to obtain root access on another machine. IBM X-force ID: 138117.

9.1CVSS8.7AI score0.0054EPSS

CVE•added 2022/01/10 2:10 p.m.•50 views

CVE-2021-38990

IBM AIX 7.1, 7.2, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the mount command which could lead to code execution. IBM X-Force ID: 212952.

8.4CVSS7.3AI score0.00103EPSS

CVE•added 2021/06/28 4:15 p.m.•48 views

CVE-2021-29693

IBM AIX 7.1, 7.2, and VIOS 3.1 could allow a local user that is in the with elevated group privileges to cause a denial of service due to a vulnerability in the lpd daemon. IBM X-Force ID: 200255.

4.9CVSS4.4AI score0.00102EPSS

CVE•added 2021/01/20 3:15 p.m.•47 views

CVE-2020-4887

IBM AIX 7.1, 7.2 and AIX VIOS 3.1 could allow a local user to exploit a vulnerability in the gencore user command to create arbitrary files in any directory. IBM X-Force ID: 190911.

6.2CVSS5.5AI score0.00042EPSS

Total number of security vulnerabilities58