Lucene search

K

79 matches found

CVE
CVE
•added 2014/10/15 12:55 a.m.•842 views

CVE-2014-3566

The SSL protocol 3.0, as used in OpenSSL through 1.0.1i and other products, uses nondeterministic CBC padding, which makes it easier for man-in-the-middle attackers to obtain cleartext data via a padding-oracle attack, aka the "POODLE" issue.

4.3CVSS4.4AI score0.9413EPSS
CVE
CVE
•added 2020/11/20 4:15 a.m.•317 views

CVE-2020-4788

IBM Power9 (AIX 7.1, 7.2, and VIOS 3.1) processors could allow a local user to obtain sensitive information from the data in the L1 cache under extenuating circumstances. IBM X-Force ID: 189296.

5.1CVSS5.7AI score0.00198EPSS
CVE
CVE
•added 2023/04/26 12:15 p.m.•156 views

CVE-2023-26286

IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the AIX runtime services library to execute arbitrary commands. IBM X-Force ID: 248421.

8.4CVSS7.7AI score0.00046EPSS
CVE
CVE
•added 2022/03/07 5:15 p.m.•148 views

CVE-2022-22351

IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a non-privileged trusted host user to exploit a vulnerability in the nimsh daemon to cause a denial of service in the nimsh daemon on another trusted host. IBM X-Force ID: 220396

8.6CVSS7.9AI score0.00268EPSS
CVE
CVE
•added 2022/02/24 5:15 p.m.•147 views

CVE-2021-38995

IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the AIX kernel to cause a denial of service. IBM X-Force ID: 213073.

6.2CVSS5AI score0.00043EPSS
CVE
CVE
•added 2022/03/01 5:15 p.m.•138 views

CVE-2021-38955

IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a local user with elevated privileges to cause a denial of service due to a file creation vulnerability in the audit commands. IBM X-Force ID: 211825.

4.4CVSS4.4AI score0.00039EPSS
CVE
CVE
•added 2023/04/28 3:15 a.m.•137 views

CVE-2023-28528

IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the invscout command to execute arbitrary commands. IBM X-Force ID: 251207.

8.4CVSS7.8AI score0.02265EPSS
CVE
CVE
•added 2022/03/02 5:15 p.m.•129 views

CVE-2022-22350

IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in CAA to cause a denial of service. IBM X-Force ID: 220394.

6.2CVSS5.1AI score0.00043EPSS
CVE
CVE
•added 2022/02/24 5:15 p.m.•118 views

CVE-2021-38994

IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the AIX kernel to cause a denial of service. IBM X-Force ID: 213072.

6.2CVSS5AI score0.00043EPSS
CVE
CVE
•added 2024/02/22 12:15 p.m.•117 views

CVE-2024-25021

IBM AIX 7.3, VIOS 4.1's Perl implementation could allow a non-privileged local user to exploit a vulnerability to execute arbitrary commands. IBM X-Force ID: 281320.

8.4CVSS8.2AI score0.00137EPSS
CVE
CVE
•added 2022/12/23 7:15 p.m.•115 views

CVE-2022-43381

IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1could allow a non-privileged local user to exploit a vulnerability in the AIX SMB client to cause a denial of service. IBM X-Force ID: 238639.

6.2CVSS6AI score0.00016EPSS
CVE
CVE
•added 2022/03/07 5:15 p.m.•113 views

CVE-2021-38989

IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the AIX kernel to cause a denial of service. IBM X-Force ID: 212951.

6.2CVSS5AI score0.00041EPSS
CVE
CVE
•added 2022/12/20 9:15 p.m.•109 views

CVE-2022-43382

IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1could allow a local user with elevated privileges to exploit a vulnerability in the lpd daemon to cause a denial of service. IBM X-Force ID: 238641.

6.2CVSS5.2AI score0.00015EPSS
CVE
CVE
•added 2023/08/24 2:15 p.m.•108 views

CVE-2023-40371

IBM AIX 7.2, 7.3, VIOS 3.1's OpenSSH implementation could allow a non-privileged local user to access files outside of those allowed due to improper access controls. IBM X-Force ID: 263476.

6.2CVSS5.8AI score0.0001EPSS
CVE
CVE
•added 2024/05/16 5:16 p.m.•100 views

CVE-2024-27260

IBM AIX could 7.2, 7.3, VIOS 3.1, and VIOS 4.1 allow a non-privileged local user to exploit a vulnerability in the invscout command to execute arbitrary commands. IBM X-Force ID: 283985.

8.4CVSS7AI score0.00052EPSS
CVE
CVE
•added 2022/03/02 5:15 p.m.•93 views

CVE-2021-38996

IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the AIX kernel to cause a denial of service. IBM X-Force ID: 213076.

6.2CVSS5AI score0.00043EPSS
CVE
CVE
•added 2022/03/07 5:15 p.m.•90 views

CVE-2021-38988

IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the AIX kernel to cause a denial of service. IBM X-Force ID: 212950.

6.2CVSS5AI score0.00041EPSS
CVE
CVE
•added 2022/12/23 7:15 p.m.•89 views

CVE-2022-39165

IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1could allow a non-privileged local user to exploit a vulnerability in CAA to cause a denial of service. IBM X-Force ID: 235183.

6.2CVSS5.9AI score0.00014EPSS
CVE
CVE
•added 2022/02/25 6:15 p.m.•88 views

CVE-2021-38993

IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the smbcd daemon to cause a denial of service. IBM X-Force ID: 212962.

6.2CVSS5.2AI score0.00038EPSS
CVE
CVE
•added 2022/06/15 4:15 p.m.•88 views

CVE-2022-22444

IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a local user to exploit a vulnerability in the lpd daemon to cause a denial of service. IBM X-Force ID: 224444.

6.2CVSS5.1AI score0.00074EPSS
CVE
CVE
•added 2022/12/23 8:15 p.m.•88 views

CVE-2022-39164

IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1could allow a non-privileged local user to exploit a vulnerability in the AIX kernel to cause a denial of service. IBM X-Force ID: 235181.

6.2CVSS5.8AI score0.00017EPSS
CVE
CVE
•added 2022/12/23 8:15 p.m.•88 views

CVE-2022-43849

IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1could allow a non-privileged local user to exploit a vulnerability in the AIX pfcdd kernel extension to cause a denial of service. IBM X-Force ID: 239170.

6.2CVSS5.8AI score0.00016EPSS
CVE
CVE
•added 2015/01/15 10:59 p.m.•87 views

CVE-2014-8904

lquerylv in cmdlvm in IBM AIX 5.3, 6.1, and 7.1 and VIOS 2.2.x allows local users to gain privileges via a crafted DBGCMD_LQUERYLV environment-variable value.

7.2CVSS6AI score0.0056EPSS
CVE
CVE
•added 2024/12/07 1:19 p.m.•85 views

CVE-2024-47115

IBM AIX 7.2, 7.3 and VIOS 3.1 and 4.1 could allow a local user to execute arbitrary commands on the system due to improper neutralization of input.

7.8CVSS7.9AI score0.00052EPSS
CVE
CVE
•added 2013/07/18 4:51 p.m.•84 views

CVE-2013-4011

Multiple unspecified vulnerabilities in the InfiniBand subsystem in IBM AIX 6.1 and 7.1, and VIOS 2.2.2.2-FP-26 SP-02, allow local users to gain privileges via vectors involving (1) arp.ib or (2) ibstat.

7.2CVSS6.4AI score0.08468EPSS
CVE
CVE
•added 2022/09/13 9:15 p.m.•83 views

CVE-2022-34356

IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the AIX kernel to obtain root privileges. IBM X-Force ID: 230502.

8.4CVSS7AI score0.00029EPSS
CVE
CVE
•added 2022/12/23 8:15 p.m.•83 views

CVE-2022-43848

IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the AIX perfstat kernel extension to cause a denial of service. IBM X-Force ID: 239169.

6.2CVSS5.8AI score0.00016EPSS
CVE
CVE
•added 2014/07/02 10:35 a.m.•81 views

CVE-2014-3074

The runtime linker in IBM AIX 6.1 and 7.1 and VIOS 2.2.x allows local users to create a mode-666 root-owned file, and consequently gain privileges, by setting crafted MALLOCOPTIONS and MALLOCBUCKETS environment-variable values and then executing a setuid program.

7.2CVSS5.9AI score0.00081EPSS
CVE
CVE
•added 2021/08/02 3:15 p.m.•78 views

CVE-2021-29741

IBM AIX 7.1, 7.2, and VIOS 3.1 could allow a local user to exploit a vulnerability in Korn Shell (ksh) to gain root privileges. IBM X-Force ID: 201478.

8.4CVSS7.3AI score0.00039EPSS
CVE
CVE
•added 2017/02/15 7:59 p.m.•76 views

CVE-2016-8972

IBM AIX 6.1, 7.1, and 7.2 could allow a local user to gain root privileges using a specially crafted command within the bellmail client. IBM APARs: IV91006, IV91007, IV91008, IV91010, IV91011.

7.8CVSS7.5AI score0.00627EPSS
CVE
CVE
•added 2023/11/10 4:15 a.m.•76 views

CVE-2023-45167

IBM AIX's 7.3 Python implementation could allow a non-privileged local user to exploit a vulnerability to cause a denial of service. IBM X-Force ID: 267965.

6.2CVSS5.7AI score0.00014EPSS
CVE
CVE
•added 2021/08/26 8:15 p.m.•69 views

CVE-2021-29801

IBM AIX 7.1, 7.2, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the kernel to gain root privileges. IBM X-Force ID: 203977.

8.4CVSS7.2AI score0.00034EPSS
CVE
CVE
•added 2022/12/23 7:15 p.m.•69 views

CVE-2022-43380

IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the AIX NFS kernel extension to cause a denial of service. IBM X-Force ID: 238640.

6.2CVSS5.8AI score0.00016EPSS
CVE
CVE
•added 2013/07/06 1:57 p.m.•67 views

CVE-2013-3005

The TFTP client in IBM AIX 6.1 and 7.1, and VIOS 2.2.2.2-FP-26 SP-02, when RBAC is enabled, allows remote authenticated users to bypass intended file-ownership restrictions, and read or overwrite arbitrary files, via unspecified vectors.

8.5CVSS6AI score0.01244EPSS
CVE
CVE
•added 2020/12/10 11:15 p.m.•67 views

CVE-2020-4829

IBM AIX 7.1, 7.2, and VIOS 3.1 could allow a local user to exploit a vulnerability in the ksu user command to gain root privileges. IBM X-Force ID: 189960.

8.4CVSS7.5AI score0.00038EPSS
CVE
CVE
•added 2022/12/23 7:15 p.m.•67 views

CVE-2022-40233

IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the AIX TCP/IP kernel extension to cause a denial of service. IBM X-Force ID: 235599.

6.2CVSS5.8AI score0.00025EPSS
CVE
CVE
•added 2022/12/23 8:15 p.m.•67 views

CVE-2022-41290

IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the rm_rlcache_file command to obtain root privileges. IBM X-Force ID: 236690.

8.4CVSS7.9AI score0.00021EPSS
CVE
CVE
•added 2021/08/26 8:15 p.m.•65 views

CVE-2021-29862

IBM AIX 7.1, 7.2, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the AIX kernel to cause a denial of service. IBM X-Force ID: 206086.

6.2CVSS5.7AI score0.00041EPSS
CVE
CVE
•added 2021/11/17 2:15 p.m.•64 views

CVE-2021-29860

IBM AIX 7.1, 7.2, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the libc.a library to expose sensitive information. IBM X-Force ID: 206084.

6.2CVSS5.8AI score0.00108EPSS
CVE
CVE
•added 2013/06/21 2:55 p.m.•63 views

CVE-2013-3035

The IPv6 implementation in the inet subsystem in IBM AIX 6.1 and 7.1, and VIOS 2.2.2.2-FP-26 SP-02, allows remote attackers to cause a denial of service (system hang) via a crafted packet to an IPv6 interface.

7.1CVSS6.2AI score0.06657EPSS
CVE
CVE
•added 2017/02/15 7:59 p.m.•62 views

CVE-2016-6079

IBM AIX 5.3, 6.1, 7.1, and 7.2 contains an unspecified vulnerability that would allow a locally authenticated user to obtain root level privileges. IBM APARs: IV88658, IV87981, IV88419, IV87640, IV88053.

7.8CVSS7.2AI score0.02047EPSS
CVE
CVE
•added 2022/01/11 5:15 p.m.•62 views

CVE-2021-38991

IBM AIX 7.0, 7.1, 7.2, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the lscore command which could lead to code execution. IBM X-Force ID: 212953.

8.4CVSS7.4AI score0.00081EPSS
CVE
CVE
•added 2014/05/08 10:55 a.m.•59 views

CVE-2014-0930

The ptrace system call in IBM AIX 5.3, 6.1, and 7.1, and VIOS 2.2.x, allows local users to cause a denial of service (system crash) or obtain sensitive information from kernel memory via a crafted PT_LDINFO operation.

4.7CVSS5.7AI score0.00112EPSS
CVE
CVE
•added 2021/08/26 8:15 p.m.•59 views

CVE-2021-29727

IBM AIX 7.1, 7.2, and VIOS 3.1 could allow a local user to exploit a vulnerability in the AIX kernel to cause a denial of service. IBM X-Force ID: 201106.

6.2CVSS5.7AI score0.00037EPSS
CVE
CVE
•added 2023/12/13 11:15 p.m.•59 views

CVE-2023-45166

IBM AIX 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the piodmgrsu command to obtain elevated privileges. IBM X-Force ID: 267964.

8.4CVSS7.5AI score0.00024EPSS
CVE
CVE
•added 2022/09/13 9:15 p.m.•58 views

CVE-2022-36768

IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the invscout command to obtain root privileges. IBM X-Force ID: 232014.

8.4CVSS7.2AI score0.00029EPSS
CVE
CVE
•added 2024/01/11 2:15 a.m.•57 views

CVE-2023-45175

IBM AIX 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the TCP/IP kernel extension to cause a denial of service. IBM X-Force ID: 267973.

6.2CVSS5AI score0.00017EPSS
CVE
CVE
•added 2015/10/16 1:59 a.m.•56 views

CVE-2015-4948

netstat in IBM AIX 5.3, 6.1, and 7.1 and VIOS 2.2.x, when a fibre channel adapter is used, allows local users to gain privileges via unspecified vectors.

6.9CVSS6.2AI score0.00048EPSS
CVE
CVE
•added 2023/01/18 7:15 p.m.•56 views

CVE-2022-47990

IBM AIX 7.1, 7.2, 7.3 and VIOS , 3.1 could allow a non-privileged local user to exploit a vulnerability in X11 to cause a buffer overflow that could result in a denial of service or arbitrary code execution. IBM X-Force ID: 243556.

7.8CVSS7.1AI score0.00016EPSS
CVE
CVE
•added 2023/12/13 11:15 p.m.•56 views

CVE-2023-45170

IBM AIX 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the piobe command to escalate privileges or cause a denial of service. IBM X-Force ID: 267968.

8.4CVSS7.8AI score0.00033EPSS
Total number of security vulnerabilities79