AIX

🟡 Medium   ⏱ 15–45 min  Last verified: 25 May 2026 Affected versions: IBM AIX 7.1 📖 ~4 min read  •  Source: NVD CVE-2021-20480, IBM Support Bulletin CVE: CVE-2021-20480 NVD summary: IBM WebSphere Application Server 7.0, 8.0, and 8.5 is vulnerable to server-side request forgery (SSRF). By sending a specially crafted request, a remote authenticated […]

🟡 Medium   ⏱ 15–45 min  Last verified: 25 May 2026 Affected versions: IBM AIX 7.3 📖 ~4 min read  •  Source: NVD CVE-2020-4657, IBM Support Bulletin CVE: CVE-2020-4657 NVD summary: IBM Sterling B2B Integrator 5.2.0.0 through 6.0.3.2 Standard Edition is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in […]

🟠 High   ⏱ 30–90 min  Last verified: 25 May 2026 Affected versions: IBM AIX 7.3 📖 ~4 min read  •  Source: NVD CVE-1999-0022, IBM PSIRT advisory page CVE: CVE-1999-0022 NVD summary: Local user gains root privileges via buffer overflow in rdist, via expstr() function. References: sunsolve.sun.com/pub-cgi/retrieve.pl?doctype=col   sunsolve.sun.com/pub-cgi/retrieve.pl?doctype=col Table of contents Symptom & Impact […]

🟡 Medium   ⏱ 15–45 min  Last verified: 25 May 2026 Affected versions: IBM AIX 7.3 Affected: 7.1, 7.2 📖 ~4 min read  •  Source: NVD CVE-2020-4788, IBM Support Bulletin CVE: CVE-2020-4788 NVD summary: IBM Power9 (AIX 7.1, 7.2, and VIOS 3.1) processors could allow a local user to obtain sensitive information from the data […]

🟠 High   ⏱ 30–90 min  Last verified: 25 May 2026 Affected versions: IBM AIX 7.3 📖 ~4 min read  •  Source: NVD CVE-1999-1552, IBM PSIRT advisory page CVE: CVE-1999-1552 NVD summary: dpsexec (DPS Server) when running under XDM in IBM AIX 3.2.5 and earlier does not properly check privileges, which allows local users to […]

🟠 High   ⏱ 30–90 min  Last verified: 25 May 2026 Affected versions: IBM AIX 7.2 📖 ~4 min read  •  Source: NVD CVE-1999-1552, IBM PSIRT advisory page CVE: CVE-1999-1552 NVD summary: dpsexec (DPS Server) when running under XDM in IBM AIX 3.2.5 and earlier does not properly check privileges, which allows local users to […]

🟡 Medium   ⏱ 15–45 min  Last verified: 25 May 2026 Affected versions: IBM AIX 7.1 📖 ~4 min read  •  Source: NVD CVE-2020-4693, IBM Support Bulletin CVE: CVE-2020-4693 NVD summary: IBM Spectrum Protect Operations Center 7.1.0.000 through 7.1.10 and 8.1.0.000 through 8.1.9 may allow an attacker to execute arbitrary code on the system, caused […]

🟠 High   ⏱ 30–90 min  Last verified: 25 May 2026 Affected versions: IBM AIX 7.2 📖 ~4 min read  •  Source: NVD CVE-1999-1119, IBM PSIRT advisory page CVE: CVE-1999-1119 NVD summary: FTP installation script anon.ftp in AIX insecurely configures anonymous FTP, which allows remote attackers to execute arbitrary commands. References: www.cert.org/advisories/CA-1992-09.html   www.securityfocus.com/bid/41   […]

🟠 High   ⏱ 30–90 min  Last verified: 25 May 2026 Affected versions: IBM AIX 7.2 📖 ~4 min read  •  Source: NVD CVE-1999-0117, IBM PSIRT advisory page CVE: CVE-1999-0117 NVD summary: AIX passwd allows local users to gain root access. References: exchange.xforce.ibmcloud.com/vulnerabilities/CVE   exchange.xforce.ibmcloud.com/vulnerabilities/CVE Table of contents Symptom & Impact Environment & Reproduction Root […]

🟡 Medium   ⏱ 15–45 min  Last verified: 25 May 2026 Affected versions: IBM AIX 7.1 📖 ~4 min read  •  Source: NVD CVE-2018-20732, IBM PSIRT advisory page CVE: CVE-2018-20732 NVD summary: SAS Web Infrastructure Platform before 9.4M6 allows remote attackers to execute arbitrary code via a Java deserialization variant. References: www.securityfocus.com/bid/106648   support.sas.com/kb/63/391.html   […]