CVSS: 8.4EPSS: 0%CPEs: 3EXPL: 0CVE-2023-45174 – IBM AIX privilege escalation
https://notcve.org/view.php?id=CVE-2023-45174
13 Dec 2023 — IBM AIX 7.2, 7.3, and VIOS 3.1 could allow a privileged local user to exploit a vulnerability in the qdaemon command to escalate privileges or cause a denial of service. IBM X-Force ID: 267972. IBM AIX 7.2, 7.3 y VIOS 3.1 podrían permitir que un usuario local privilegiado aproveche una vulnerabilidad en el comando qdaemon para escalar privilegios o provocar una denegación de servicio. ID de IBM X-Force: 267972. • https://exchange.xforce.ibmcloud.com/vulnerabilities/267972 •
CVSS: 8.4EPSS: 0%CPEs: 3EXPL: 0CVE-2023-45166 – IBM AIX privilege escalation
https://notcve.org/view.php?id=CVE-2023-45166
13 Dec 2023 — IBM AIX 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the piodmgrsu command to obtain elevated privileges. IBM X-Force ID: 267964. IBM AIX 7.2, 7.3 y VIOS 3.1 podrían permitir que un usuario local sin privilegios aproveche una vulnerabilidad en el comando piodmgrsu para obtener privilegios elevados. ID de IBM X-Force: 267964. • https://exchange.xforce.ibmcloud.com/vulnerabilities/267964 •
CVSS: 8.4EPSS: 0%CPEs: 3EXPL: 0CVE-2023-45168 – IBM AIX command execution
https://notcve.org/view.php?id=CVE-2023-45168
01 Dec 2023 — IBM AIX 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the invscout command to execute arbitrary commands. IBM X-Force ID: 267966. IBM AIX 7.2, 7.3 y VIOS 3.1 podrían permitir que un usuario local sin privilegios aproveche una vulnerabilidad en el comando invscout para ejecutar comandos arbitrarios. ID de IBM X-Force: 267966. • https://exchange.xforce.ibmcloud.com/vulnerabilities/267966 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 6.2EPSS: 0%CPEs: 2EXPL: 0CVE-2023-45167 – IBM AIX denial of service
https://notcve.org/view.php?id=CVE-2023-45167
10 Nov 2023 — IBM AIX's 7.3 Python implementation could allow a non-privileged local user to exploit a vulnerability to cause a denial of service. IBM X-Force ID: 267965. La implementación Python 7.3 de IBM AIX podría permitir que un usuario local sin privilegios aproveche una vulnerabilidad para provocar una denegación de servicio. ID de IBM X-Force: 267965. • https://aix.software.ibm.com/aix/efixes/security/python_advisory6.asc • CWE-20: Improper Input Validation CWE-400: Uncontrolled Resource Consumption •
CVSS: 6.2EPSS: 0%CPEs: 3EXPL: 0CVE-2023-40371 – IBM AIX information disclosure
https://notcve.org/view.php?id=CVE-2023-40371
24 Aug 2023 — IBM AIX 7.2, 7.3, VIOS 3.1's OpenSSH implementation could allow a non-privileged local user to access files outside of those allowed due to improper access controls. IBM X-Force ID: 263476. • https://exchange.xforce.ibmcloud.com/vulnerabilities/263476 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor CWE-327: Use of a Broken or Risky Cryptographic Algorithm •
CVSS: 8.4EPSS: 3%CPEs: 4EXPL: 1CVE-2023-28528 – IBM AIX command execution
https://notcve.org/view.php?id=CVE-2023-28528
28 Apr 2023 — IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the invscout command to execute arbitrary commands. IBM X-Force ID: 251207. • https://packetstorm.news/files/id/172458 • CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') •
CVSS: 8.4EPSS: 0%CPEs: 4EXPL: 0CVE-2023-26286 – IBM AIX privilege escalation
https://notcve.org/view.php?id=CVE-2023-26286
26 Apr 2023 — IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the AIX runtime services library to execute arbitrary commands. IBM X-Force ID: 248421. • https://exchange.xforce.ibmcloud.com/vulnerabilities/248421 •
CVSS: 7.8EPSS: 0%CPEs: 4EXPL: 0CVE-2022-47990 – IBM AIX denial of service
https://notcve.org/view.php?id=CVE-2022-47990
18 Jan 2023 — IBM AIX 7.1, 7.2, 7.3 and VIOS , 3.1 could allow a non-privileged local user to exploit a vulnerability in X11 to cause a buffer overflow that could result in a denial of service or arbitrary code execution. IBM X-Force ID: 243556. IBM AIX 7.1, 7.2, 7.3 y VIOS, 3.1 podrían permitir que un usuario local sin privilegios aproveche una vulnerabilidad en X11 para provocar un desbordamiento del búfer que podría provocar una denegación de servicio o la ejecución de código arbitrario. ID de IBM X-Force: 243556. • https://exchange.xforce.ibmcloud.com/vulnerabilities/243556 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 8.4EPSS: 0%CPEs: 4EXPL: 0CVE-2022-41290 – IBM AIX privilege escalation
https://notcve.org/view.php?id=CVE-2022-41290
23 Dec 2022 — IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the rm_rlcache_file command to obtain root privileges. IBM X-Force ID: 236690. IBM AIX 7.1, 7.2, 7.3 y VIOS 3.1 podrían permitir que un usuario local sin privilegios aproveche una vulnerabilidad en el comando rm_rlcache_file para obtener privilegios de root. ID de IBM X-Force: 236690. • https://exchange.xforce.ibmcloud.com/vulnerabilities/236690 • CWE-250: Execution with Unnecessary Privileges CWE-269: Improper Privilege Management •
CVSS: 6.2EPSS: 0%CPEs: 4EXPL: 0CVE-2022-39164 – IBM AIX denial of service
https://notcve.org/view.php?id=CVE-2022-39164
23 Dec 2022 — IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1could allow a non-privileged local user to exploit a vulnerability in the AIX kernel to cause a denial of service. IBM X-Force ID: 235181. IBM AIX 7.1, 7.2, 7.3 y VIOS 3.1 podrían permitir que un usuario local sin privilegios aproveche una vulnerabilidad en el kernel de AIX para provocar una denegación de servicio. ID de IBM X-Force: 235181. • https://exchange.xforce.ibmcloud.com/vulnerabilities/235181 • CWE-400: Uncontrolled Resource Consumption •