AIX

🟡 Medium   ⏱ 15–45 min  Last verified: 25 May 2026 Affected versions: IBM AIX 7.1 📖 ~4 min read  •  Source: NVD CVE-2025-23227, IBM Support Bulletin CVE: CVE-2025-23227 NVD summary: IBM Tivoli Application Dependency Discovery Manager 7.3.0.0 through 7.3.0.11 is vulnerable to stored cross-site scripting. This vulnerability allows authenticated users to embed arbitrary JavaScript […]

🟡 Medium   ⏱ 15–45 min  Last verified: 25 May 2026 Affected versions: IBM AIX 7.1 📖 ~4 min read  •  Source: NVD CVE-2021-38949, IBM Support Bulletin CVE: CVE-2021-38949 NVD summary: IBM MQ 7.5, 8.0, 9.0 LTS, 9.1 CD, and 9.1 LTS stores user credentials in plain clear text which can be read by a […]

🟠 High   ⏱ 30–90 min  Last verified: 25 May 2026 Affected versions: IBM AIX 7.3 📖 ~4 min read  •  Source: NVD CVE-2000-0249, IBM PSIRT advisory page CVE: CVE-2000-0249 NVD summary: The AIX Fast Response Cache Accelerator (FRCA) allows local users to modify arbitrary files via the configuration capability in the frcactrl program. References: […]

🟡 Medium   ⏱ 15–45 min  Last verified: 25 May 2026 Affected versions: IBM AIX 7.2 📖 ~4 min read  •  Source: NVD CVE-2004-2634, IBM Support Bulletin CVE: CVE-2004-2634 NVD summary: The (1) bos.rte.serv_aid or (2) bos.rte.console filesets in IBM AIX 5.1 and 5.2 allow local users to overwrite arbitrary files via a symlink attack […]

🟡 Medium   ⏱ 15–45 min  Last verified: 25 May 2026 Affected versions: IBM AIX 7.1 📖 ~4 min read  •  Source: NVD CVE-2021-38977, IBM Support Bulletin CVE: CVE-2021-38977 NVD summary: IBM Tivoli Key Lifecycle Manager 3.0, 3.0.1, 4.0, and 4.1 does not set the secure attribute on authorization tokens or session cookies. Attackers may […]

🟠 High   ⏱ 30–90 min  Last verified: 25 May 2026 Affected versions: IBM AIX 7.2 📖 ~4 min read  •  Source: NVD CVE-2000-0249, IBM PSIRT advisory page CVE: CVE-2000-0249 NVD summary: The AIX Fast Response Cache Accelerator (FRCA) allows local users to modify arbitrary files via the configuration capability in the frcactrl program. References: […]

🟡 Medium   ⏱ 15–45 min  Last verified: 25 May 2026 Affected versions: IBM AIX 7.2 📖 ~4 min read  •  Source: NVD CVE-2003-0914, IBM PSIRT advisory page CVE: CVE-2003-0914 NVD summary: ISC BIND 8.3.x before 8.3.7, and 8.4.x before 8.4.3, allows remote attackers to poison the cache via a malicious name server that returns […]

🟡 Medium   ⏱ 15–45 min  Last verified: 25 May 2026 Affected versions: IBM AIX 7.3 📖 ~4 min read  •  Source: NVD CVE-2021-29798, IBM Support Bulletin CVE: CVE-2021-29798 NVD summary: IBM Sterling B2B Integrator Standard Edition 6.0.0.0 through 6.1.1.0 is vulnerable to SQL injection. A remote attacker could send specially crafted SQL statements, which […]

🟠 High   ⏱ 30–90 min  Last verified: 25 May 2026 Affected versions: IBM AIX 7.2 📖 ~4 min read  •  Source: NVD CVE-1999-0835, IBM PSIRT advisory page CVE: CVE-1999-0835 NVD summary: Denial of service in BIND named via malformed SIG records. References: ftp://ftp.caldera.com/pub/security/OpenLinux/CSS   www.securityfocus.com/bid/788   ftp://ftp.caldera.com/pub/security/OpenLinux/CSS Table of contents Symptom & Impact Environment […]

🟠 High   ⏱ 30–90 min  Last verified: 25 May 2026 Affected versions: IBM AIX 7.2 📖 ~4 min read  •  Source: NVD CVE-1999-1013, IBM PSIRT advisory page CVE: CVE-1999-1013 NVD summary: named-xfer in AIX 4.1.5 and 4.2.1 allows members of the system group to overwrite system files to gain root access via the -f […]