Vios Security Vulnerabilities and Issues — Vios CVE List

Lucene search

IbmVios

13 matches found

CVE•added 2015/01/15 10:59 p.m.•87 views

CVE-2014-8904

lquerylv in cmdlvm in IBM AIX 5.3, 6.1, and 7.1 and VIOS 2.2.x allows local users to gain privileges via a crafted DBGCMD_LQUERYLV environment-variable value.

7.2CVSS6AI score0.0056EPSS

CVE•added 2024/12/07 1:19 p.m.•85 views

CVE-2024-47115

IBM AIX 7.2, 7.3 and VIOS 3.1 and 4.1 could allow a local user to execute arbitrary commands on the system due to improper neutralization of input.

7.8CVSS7.9AI score0.00052EPSS

CVE•added 2013/07/18 4:51 p.m.•84 views

CVE-2013-4011

Multiple unspecified vulnerabilities in the InfiniBand subsystem in IBM AIX 6.1 and 7.1, and VIOS 2.2.2.2-FP-26 SP-02, allow local users to gain privileges via vectors involving (1) arp.ib or (2) ibstat.

7.2CVSS6.4AI score0.08468EPSS

CVE•added 2014/07/02 10:35 a.m.•81 views

CVE-2014-3074

The runtime linker in IBM AIX 6.1 and 7.1 and VIOS 2.2.x allows local users to create a mode-666 root-owned file, and consequently gain privileges, by setting crafted MALLOCOPTIONS and MALLOCBUCKETS environment-variable values and then executing a setuid program.

7.2CVSS5.9AI score0.00081EPSS

CVE•added 2017/02/15 7:59 p.m.•76 views

CVE-2016-8972

IBM AIX 6.1, 7.1, and 7.2 could allow a local user to gain root privileges using a specially crafted command within the bellmail client. IBM APARs: IV91006, IV91007, IV91008, IV91010, IV91011.

7.8CVSS7.5AI score0.00627EPSS

CVE•added 2013/06/21 2:55 p.m.•63 views

CVE-2013-3035

The IPv6 implementation in the inet subsystem in IBM AIX 6.1 and 7.1, and VIOS 2.2.2.2-FP-26 SP-02, allows remote attackers to cause a denial of service (system hang) via a crafted packet to an IPv6 interface.

7.1CVSS6.2AI score0.06657EPSS

CVE•added 2017/02/15 7:59 p.m.•62 views

CVE-2016-6079

IBM AIX 5.3, 6.1, 7.1, and 7.2 contains an unspecified vulnerability that would allow a locally authenticated user to obtain root level privileges. IBM APARs: IV88658, IV87981, IV88419, IV87640, IV88053.

7.8CVSS7.2AI score0.02047EPSS

CVE•added 2023/01/18 7:15 p.m.•56 views

CVE-2022-47990

IBM AIX 7.1, 7.2, 7.3 and VIOS , 3.1 could allow a non-privileged local user to exploit a vulnerability in X11 to cause a buffer overflow that could result in a denial of service or arbitrary code execution. IBM X-Force ID: 243556.

7.8CVSS7.1AI score0.00016EPSS

CVE•added 2012/06/27 10:18 a.m.•48 views

CVE-2012-2200

The default configuration of sendmail in IBM AIX 6.1 and 7.1, and VIOS 2.2.1.4-FP-25 SP-02, allows local users to gain privileges by entering a command in a .forward file in a home directory.

7.2CVSS6.4AI score0.00114EPSS

CVE•added 2012/05/04 4:55 p.m.•47 views

CVE-2012-0745

The getpwnam function in IBM AIX 5.3, 6.1, and 7.1 and VIOS 2.1.0.10 through 2.2.1.3 does not properly interact with customer-extended LDAP user filtering, which allows local users to gain privileges via unspecified vectors.

7.2CVSS6.1AI score0.00082EPSS

CVE•added 2010/03/10 10:30 p.m.•46 views

CVE-2010-0960

Buffer overflow in qosmod in bos.net.tcp.server in IBM AIX 6.1 and VIOS 2.1 allows local users to gain privileges via unspecified vectors.

7.2CVSS6.7AI score0.00069EPSS

CVE•added 2012/03/02 10:55 p.m.•39 views

CVE-2011-1385

IBM AIX 5.3, 6.1, and 7.1, and VIOS 2.1.x and 2.2.x, allows remote attackers to cause a denial of service (system crash) via an ICMP Echo Reply packet that contains 1 in the Identifier field, a different vulnerability than CVE-2012-0194.

7.8CVSS6.2AI score0.0527EPSS

CVE•added 2010/03/10 10:30 p.m.•34 views

CVE-2010-0961

Buffer overflow in qoslist in bos.net.tcp.server in IBM AIX 6.1 and VIOS 2.1 allows local users to gain privileges via unspecified vectors.

7.2CVSS6.7AI score0.00069EPSS