AIX

🟡 Medium   ⏱ 15–45 min  Last verified: 25 May 2026 Affected versions: IBM AIX 7.3 📖 ~4 min read  •  Source: NVD CVE-2015-9281, IBM PSIRT advisory page CVE: CVE-2015-9281 NVD summary: Logon Manager in SAS Web Infrastructure Platform before 9.4M3 allows reflected XSS on the Timeout page. References: support.sas.com/kb/55/537.html   support.sas.com/kb/55/537.html Table of contents […]

🟢 Low   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: IBM AIX 7.2 📖 ~4 min read  •  Source: NVD CVE-2002-0790, IBM Support Bulletin CVE: CVE-2002-0790 NVD summary: clchkspuser and clpasswdremote in AIX expose an encrypted password in the cspoc.log file, which could allow local users to gain privileges. References: techsupport.services.ibm.com/server/aix.uhuic_ge   […]

🟡 Medium   ⏱ 15–45 min  Last verified: 25 May 2026 Affected versions: IBM AIX 7.1 📖 ~4 min read  •  Source: NVD CVE-2018-1751, IBM Support Bulletin CVE: CVE-2018-1751 NVD summary: IBM Security Key Lifecycle Manager 3.0 through 3.0.0.2 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. […]

🟡 Medium   ⏱ 15–45 min  Last verified: 25 May 2026 Affected versions: IBM AIX 7.3 Affected: 7.1, 7.2 📖 ~4 min read  •  Source: NVD CVE-2016-8944, IBM Support Bulletin CVE: CVE-2016-8944 NVD summary: IBM AIX 7.1 and 7.2 allows a local user to open a file with a specially crafted argument that would crash […]

🟡 Medium   ⏱ 15–45 min  Last verified: 25 May 2026 Affected versions: IBM AIX 7.3 📖 ~4 min read  •  Source: NVD CVE-2016-8966, IBM Support Bulletin CVE: CVE-2016-8966 NVD summary: IBM BigFix Inventory v9 could allow a remote attacker to obtain sensitive information, caused by the failure to properly enable HTTP Strict Transport Security. […]

🟢 Low   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: IBM AIX 7.2 📖 ~4 min read  •  Source: NVD CVE-1999-1486, IBM Support Bulletin CVE: CVE-1999-1486 NVD summary: sadc in IBM AIX 4.1 through 4.3, when called from programs such as timex that are setgid adm, allows local users to overwrite arbitrary […]

🟡 Medium   ⏱ 15–45 min  Last verified: 25 May 2026 Affected versions: IBM AIX 7.1 📖 ~4 min read  •  Source: NVD CVE-2016-8963, IBM Support Bulletin CVE: CVE-2016-8963 NVD summary: IBM BigFix Inventory v9 stores potentially sensitive information in log files that could be read by a local user. References: www.ibm.com/support/docview.wss?uid=swg21995029   www.securityfocus.com/bid/95282   […]

🟡 Medium   ⏱ 15–45 min  Last verified: 25 May 2026 Affected versions: IBM AIX 7.1 📖 ~4 min read  •  Source: NVD CVE-2022-38391, IBM Support Bulletin CVE: CVE-2022-38391 NVD summary: IBM Spectrum Control 5.4 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 233982. […]

🟡 Medium   ⏱ 15–45 min  Last verified: 25 May 2026 Affected versions: IBM AIX 7.2 Affected: 7.1 📖 ~4 min read  •  Source: NVD CVE-2012-2192, IBM Support Bulletin CVE: CVE-2012-2192 NVD summary: The socketpair function in IBM AIX 5.3, 6.1, and 7.1 and VIOS 2.2.1.4-FP-25 SP-02 allows local users to cause a denial of […]

🟡 Medium   ⏱ 15–45 min  Last verified: 25 May 2026 Affected versions: IBM AIX 7.1 📖 ~4 min read  •  Source: NVD CVE-2022-22425, IBM Support Bulletin CVE: CVE-2022-22425 NVD summary: "IBM InfoSphere Information Server 11.7 is potentially vulnerable to CSV Injection. A remote attacker could execute arbitrary commands on the system, caused by improper […]