) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.
Search Results (Refine Search)
- Keyword (text search): cpe:2.3:o:ibm:aix:7.1:*:*:*:*:*:*:*
- CPE Name Search: true
| Vuln ID | Summary | CVSS Severity |
|---|---|---|
| CVE-2021-38994 |
IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the AIX kernel to cause a denial of service. IBM X-Force ID: 213072. Published: February 24, 2022; 12:15:07 PM -0500 |
V3.1: 5.5 MEDIUM V2.0: 2.1 LOW |
| CVE-2021-38991 |
IBM AIX 7.0, 7.1, 7.2, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the lscore command which could lead to code execution. IBM X-Force ID: 212953. Published: January 11, 2022; 12:15:07 PM -0500 |
V3.1: 7.8 HIGH V2.0: 4.6 MEDIUM |
| CVE-2021-38990 |
IBM AIX 7.1, 7.2, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the mount command which could lead to code execution. IBM X-Force ID: 212952. Published: January 10, 2022; 9:10:20 AM -0500 |
V3.1: 7.8 HIGH V2.0: 4.6 MEDIUM |
| CVE-2021-29862 |
IBM AIX 7.1, 7.2, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the AIX kernel to cause a denial of service. IBM X-Force ID: 206086. Published: August 26, 2021; 4:15:07 PM -0400 |
V3.1: 5.5 MEDIUM V2.0: 4.9 MEDIUM |
| CVE-2021-29801 |
IBM AIX 7.1, 7.2, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the kernel to gain root privileges. IBM X-Force ID: 203977. Published: August 26, 2021; 4:15:07 PM -0400 |
V3.1: 7.8 HIGH V2.0: 7.2 HIGH |
| CVE-2021-29727 |
IBM AIX 7.1, 7.2, and VIOS 3.1 could allow a local user to exploit a vulnerability in the AIX kernel to cause a denial of service. IBM X-Force ID: 201106. Published: August 26, 2021; 4:15:07 PM -0400 |
V3.1: 5.5 MEDIUM V2.0: 4.9 MEDIUM |
| CVE-2021-29741 |
IBM AIX 7.1, 7.2, and VIOS 3.1 could allow a local user to exploit a vulnerability in Korn Shell (ksh) to gain root privileges. IBM X-Force ID: 201478. Published: August 02, 2021; 11:15:08 AM -0400 |
V3.1: 7.8 HIGH V2.0: 7.2 HIGH |
| CVE-2021-29693 |
IBM AIX 7.1, 7.2, and VIOS 3.1 could allow a local user that is in the with elevated group privileges to cause a denial of service due to a vulnerability in the lpd daemon. IBM X-Force ID: 200255. Published: June 28, 2021; 12:15:08 PM -0400 |
V3.1: 4.4 MEDIUM V2.0: 2.1 LOW |
| CVE-2020-4887 |
IBM AIX 7.1, 7.2 and AIX VIOS 3.1 could allow a local user to exploit a vulnerability in the gencore user command to create arbitrary files in any directory. IBM X-Force ID: 190911. Published: January 20, 2021; 10:15:42 AM -0500 |
V3.1: 5.5 MEDIUM V2.0: 2.1 LOW |
| CVE-2020-4829 |
IBM AIX 7.1, 7.2, and VIOS 3.1 could allow a local user to exploit a vulnerability in the ksu user command to gain root privileges. IBM X-Force ID: 189960. Published: December 10, 2020; 6:15:13 PM -0500 |
V3.1: 7.8 HIGH V2.0: 7.2 HIGH |
| CVE-2018-1655 |
IBM AIX 5.3, 6.1, 7.1, and 7.2 contains a vulnerability in the rmsock command that may be used to expose kernel memory. IBM X-Force ID: 144748. Published: June 22, 2018; 10:29:00 AM -0400 |
V3.0: 5.5 MEDIUM V2.0: 2.1 LOW |
| CVE-2018-1383 |
A software logic bug creates a vulnerability in an AIX 6.1, 7.1, and 7.2 daemon which could allow a user with root privileges on one system, to obtain root access on another machine. IBM X-force ID: 138117. Published: February 13, 2018; 3:29:00 PM -0500 |
V3.0: 9.1 CRITICAL V2.0: 9.0 HIGH |
| CVE-2017-1692 |
IBM AIX 5.3, 6.1, 7.1, and 7.2 contains an unspecified vulnerability that would allow a locally authenticated user to obtain root level privileges. IBM X-Force ID: 134067. Published: February 07, 2018; 12:29:01 PM -0500 |
V3.0: 7.8 HIGH V2.0: 7.2 HIGH |
| CVE-2017-1541 |
A flaw in the AIX 5.3, 6.1, 7.1, and 7.2 JRE/SDK installp and updatep packages prevented the java.security, java.policy and javaws.policy files from being updated correctly. IBM X-Force ID: 130809. Published: October 03, 2017; 9:29:03 PM -0400 |
V3.0: 7.3 HIGH V2.0: 7.5 HIGH |
| CVE-2016-8972 |
IBM AIX 6.1, 7.1, and 7.2 could allow a local user to gain root privileges using a specially crafted command within the bellmail client. IBM APARs: IV91006, IV91007, IV91008, IV91010, IV91011. Published: February 15, 2017; 2:59:01 PM -0500 |
V3.0: 7.8 HIGH V2.0: 7.2 HIGH |
| CVE-2016-8944 |
IBM AIX 7.1 and 7.2 allows a local user to open a file with a specially crafted argument that would crash the system. IBM APARs: IV91488, IV91487, IV91456, IV90234. Published: February 15, 2017; 2:59:01 PM -0500 |
V3.0: 5.5 MEDIUM V2.0: 4.9 MEDIUM |
| CVE-2016-6079 |
IBM AIX 5.3, 6.1, 7.1, and 7.2 contains an unspecified vulnerability that would allow a locally authenticated user to obtain root level privileges. IBM APARs: IV88658, IV87981, IV88419, IV87640, IV88053. Published: February 15, 2017; 2:59:00 PM -0500 |
V3.0: 7.8 HIGH V2.0: 7.2 HIGH |
| CVE-2017-1093 |
IBM AIX 6.1, 7.1, and 7.2 could allow a local user to exploit a vulnerability in the bellmail binary to gain root privileges. Published: February 02, 2017; 5:59:00 PM -0500 |
V3.0: 7.8 HIGH V2.0: 7.2 HIGH |
| CVE-2016-8977 |
IBM BigFix Inventory v9 could disclose sensitive information to an unauthorized user using HTTP GET requests. This information could be used to mount further attacks against the system. Published: February 01, 2017; 5:59:01 PM -0500 |
V3.0: 5.3 MEDIUM V2.0: 5.0 MEDIUM |
| CVE-2016-8963 |
IBM BigFix Inventory v9 stores potentially sensitive information in log files that could be read by a local user. Published: February 01, 2017; 5:59:00 PM -0500 |
V3.0: 5.5 MEDIUM V2.0: 2.1 LOW |