CVE-2022-35720 – IBM Sterling External Authentication Server information disclosure
https://notcve.org/view.php?id=CVE-2022-35720
IBM Sterling External Authentication Server 6.1.0 and IBM Sterling Secure Proxy 6.0.3 uses weaker than expected cryptographic algorithms during installation that could allow a local attacker to decrypt sensitive information. IBM X-Force ID: 231373. • https://www.ibm.com/support/pages/node/6890663 https://www.ibm.com/support/pages/node/6890669 • CWE-327: Use of a Broken or Risky Cryptographic Algorithm •
CVE-2018-1655
https://notcve.org/view.php?id=CVE-2018-1655
IBM AIX 5.3, 6.1, 7.1, and 7.2 contains a vulnerability in the rmsock command that may be used to expose kernel memory. IBM X-Force ID: 144748. IBM AIX 5.3, 6.1, 7.1 y 7.2 contiene una vulnerabilidad en el comando rmsock que podría emplearse para exponer la memoria del kernel. IBM X-Force ID: 144748. • http://aix.software.ibm.com/aix/efixes/security/rmsock_advisory2.asc http://www.securityfocus.com/bid/104542 http://www.securitytracker.com/id/1041166 https://exchange.xforce.ibmcloud.com/vulnerabilities/144748 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVE-2018-1383
https://notcve.org/view.php?id=CVE-2018-1383
A software logic bug creates a vulnerability in an AIX 6.1, 7.1, and 7.2 daemon which could allow a user with root privileges on one system, to obtain root access on another machine. IBM X-force ID: 138117. Un error de lógica de software crea una vulnerabilidad en un demonio AIX, en versiones 6.1, 7.1 y 7.2, que podría permitir que un usuario con privilegios root en un sistema obtenga acceso root en otro equipo. IBM X-Force ID: 138117. • http://aix.software.ibm.com/aix/efixes/security/aixbase_advisory.asc http://www-01.ibm.com/support/docview.wss?uid=isg3T1026948 http://www.securityfocus.com/bid/102989 http://www.securitytracker.com/id/1040358 https://exchange.xforce.ibmcloud.com/vulnerabilities/138117 •
CVE-2017-1692
https://notcve.org/view.php?id=CVE-2017-1692
IBM AIX 5.3, 6.1, 7.1, and 7.2 contains an unspecified vulnerability that would allow a locally authenticated user to obtain root level privileges. IBM X-Force ID: 134067. IBM AIX, en versiones 5.3, 6.1, 7.1 y 7.2, contiene una vulnerabilidad sin especificar que permitiría que un usuario autenticado localmente obtenga privilegios de nivel root. IBM X-Force ID: 134067. • http://aix.software.ibm.com/aix/efixes/security/suid_advisory.asc http://www.securitytracker.com/id/1040330 https://exchange.xforce.ibmcloud.com/vulnerabilities/134067 •
CVE-2017-1541
https://notcve.org/view.php?id=CVE-2017-1541
A flaw in the AIX 5.3, 6.1, 7.1, and 7.2 JRE/SDK installp and updatep packages prevented the java.security, java.policy and javaws.policy files from being updated correctly. IBM X-Force ID: 130809. Una vulnerabilidad en AIX 5.3, 6.1, 7.1 y 7.2 en JRE/SDK con los paquetes installp y updatep evitaba que los archivos java.security, java.policy y javaws.policy se actualizasen correctamente. IBM X-Force ID: 130809. • http://aix.software.ibm.com/aix/efixes/security/java_july2017_advisory.asc http://www.securityfocus.com/bid/100914 http://www.securityfocus.com/bid/100915 http://www.securitytracker.com/id/1039372 https://exchange.xforce.ibmcloud.com/vulnerabilities/130809 • CWE-20: Improper Input Validation •