Unix

🟡 Medium   ⏱ 15–45 min  Last verified: 25 May 2026 Affected versions: IBM AIX 7.1 📖 ~4 min read  •  Source: NVD CVE-2024-56474, IBM Support Bulletin CVE: CVE-2024-56474 NVD summary: IBM TXSeries for Multiplatforms 9.1 and 11.1 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions […]

🟡 Medium   ⏱ 15–45 min  Last verified: 25 May 2026 Affected versions: IBM AIX 7.2 📖 ~4 min read  •  Source: NVD CVE-2007-4237, IBM Support Bulletin CVE: CVE-2007-4237 NVD summary: Buffer overflow in the atm subset in arp in devices.common.IBM.atm.rte in AIX 5.2 and 5.3 allows local users to gain root privileges. References: osvdb.org/36783 […]

🟡 Medium   ⏱ 15–45 min  Last verified: 25 May 2026 Affected versions: IBM AIX 7.3 Affected: 7.1, 7.2, 7.3 📖 ~4 min read  •  Source: NVD CVE-2021-38994, IBM Support Bulletin CVE: CVE-2021-38994 NVD summary: IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the […]

🟡 Medium   ⏱ 15–45 min  Last verified: 25 May 2026 Affected versions: IBM AIX 7.1 Affected: 7.2, 7.3 📖 ~4 min read  •  Source: NVD CVE-2024-56347, IBM Support Bulletin CVE: CVE-2024-56347 NVD summary: IBM AIX 7.2 and 7.3 nimsh service SSL/TLS protection mechanisms could allow a remote attacker to execute arbitrary commands due to […]

🟡 Medium   ⏱ 15–45 min  Last verified: 25 May 2026 Affected versions: IBM AIX 7.3 📖 ~4 min read  •  Source: NVD CVE-2021-38974, IBM Support Bulletin CVE: CVE-2021-38974 NVD summary: IBM Tivoli Key Lifecycle Manager 3.0, 3.0.1, 4.0, and 4.1 could allow an authenticated user to cause a denial of service using specially crafted […]

🟡 Medium   ⏱ 15–45 min  Last verified: 25 May 2026 Affected versions: IBM AIX 7.3 📖 ~4 min read  •  Source: NVD CVE-2021-38978, IBM Support Bulletin CVE: CVE-2021-38978 NVD summary: IBM Tivoli Key Lifecycle Manager 3.0, 3.0.1, 4.0, and 4.1 could allow a remote attacker to obtain sensitive information, caused by the failure to […]

🟡 Medium   ⏱ 15–45 min  Last verified: 25 May 2026 Affected versions: IBM AIX 7.1 📖 ~4 min read  •  Source: NVD CVE-2024-31914, IBM Support Bulletin CVE: CVE-2024-31914 NVD summary: IBM Sterling B2B Integrator Standard Edition 6.0.0.0 through 6.1.2.5 and 6.2.0.0 through 6.2.0.2 is vulnerable to stored cross-site scripting. This vulnerability allows users to […]

🟡 Medium   ⏱ 15–45 min  Last verified: 25 May 2026 Affected versions: IBM AIX 7.1 📖 ~4 min read  •  Source: NVD CVE-2021-29771, IBM Support Bulletin CVE: CVE-2021-29771 NVD summary: IBM InfoSphere Information Server 11.7 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus […]

🟡 Medium   ⏱ 15–45 min  Last verified: 25 May 2026 Affected versions: IBM AIX 7.1 📖 ~4 min read  •  Source: NVD CVE-2024-39744, IBM Support Bulletin CVE: CVE-2024-39744 NVD summary: IBM Sterling Connect:Direct Web Services 6.0, 6.1, 6.2, and 6.3 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious […]

🟠 High   ⏱ 30–90 min  Last verified: 25 May 2026 Affected versions: IBM AIX 7.3 📖 ~4 min read  •  Source: NVD CVE-1999-1405, IBM PSIRT advisory page CVE: CVE-1999-1405 NVD summary: snap command in AIX before 4.3.2 creates the /tmp/ibmsupt directory with world-readable permissions and does not remove or clear the directory when snap […]