The TFTP client in IBM AIX 6.1 and 7.1, and VIOS 2.2.2.2-FP-26 SP-02, when RBAC is enabled, allows remote authenticated users to bypass intended file-ownership restrictions, and read or overwrite arbitrary files, via unspecified vectors.
Max CVSS
8.5
EPSS Score
0.35%
Published
2013-07-06
Updated
2017-09-19
IBM AIX 7.1, 7.2, and VIOS 3.1 could allow a local user to exploit a vulnerability in the ksu user command to gain root privileges. IBM X-Force ID: 189960.
Max CVSS
8.4
EPSS Score
0.04%
Published
2020-12-10
Updated
2021-08-31
IBM AIX 7.1, 7.2, and VIOS 3.1 could allow a local user to exploit a vulnerability in Korn Shell (ksh) to gain root privileges. IBM X-Force ID: 201478.
Max CVSS
8.4
EPSS Score
0.04%
Published
2021-08-02
Updated
2022-07-12
IBM AIX 7.1, 7.2, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the kernel to gain root privileges. IBM X-Force ID: 203977.
Max CVSS
8.4
EPSS Score
0.04%
Published
2021-08-26
Updated
2021-09-07
IBM AIX 7.1, 7.2, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the mount command which could lead to code execution. IBM X-Force ID: 212952.
Max CVSS
8.4
EPSS Score
0.04%
Published
2022-01-10
Updated
2022-01-13
IBM AIX 7.0, 7.1, 7.2, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the lscore command which could lead to code execution. IBM X-Force ID: 212953.
Max CVSS
8.4
EPSS Score
0.04%
Published
2022-01-11
Updated
2022-07-12
IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a non-privileged trusted host user to exploit a vulnerability in the nimsh daemon to cause a denial of service in the nimsh daemon on another trusted host. IBM X-Force ID: 220396
Max CVSS
8.6
EPSS Score
0.08%
Published
2022-03-07
Updated
2022-03-18
IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the AIX kernel to obtain root privileges. IBM X-Force ID: 230502.
Max CVSS
8.4
EPSS Score
0.04%
Published
2022-09-13
Updated
2022-09-16
IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the invscout command to obtain root privileges. IBM X-Force ID: 232014.
Max CVSS
8.4
EPSS Score
0.04%
Published
2022-09-13
Updated
2022-09-16
IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the rm_rlcache_file command to obtain root privileges. IBM X-Force ID: 236690.
Max CVSS
8.4
EPSS Score
0.05%
Published
2022-12-23
Updated
2022-12-31
IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the AIX runtime services library to execute arbitrary commands. IBM X-Force ID: 248421.
Max CVSS
8.4
EPSS Score
0.04%
Published
2023-04-26
Updated
2023-05-12
CVE-2023-28528
Public exploit
IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the invscout command to execute arbitrary commands. IBM X-Force ID: 251207.
Max CVSS
8.4
EPSS Score
0.19%
Published
2023-04-28
Updated
2023-05-18
IBM AIX 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the piodmgrsu command to obtain elevated privileges. IBM X-Force ID: 267964.
Max CVSS
8.4
EPSS Score
0.04%
Published
2023-12-13
Updated
2023-12-19
IBM AIX 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the invscout command to execute arbitrary commands. IBM X-Force ID: 267966.
Max CVSS
8.4
EPSS Score
0.04%
Published
2023-12-01
Updated
2023-12-06
IBM AIX 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the piobe command to escalate privileges or cause a denial of service. IBM X-Force ID: 267968.
Max CVSS
8.4
EPSS Score
0.04%
Published
2023-12-13
Updated
2023-12-19
IBM AIX 7.2, 7.3, and VIOS 3.1 could allow a privileged local user to exploit a vulnerability in the qdaemon command to escalate privileges or cause a denial of service. IBM X-Force ID: 267972.
Max CVSS
8.4
EPSS Score
0.04%
Published
2023-12-13
Updated
2023-12-19
IBM AIX 7.3, VIOS 4.1's Perl implementation could allow a non-privileged local user to exploit a vulnerability to execute arbitrary commands. IBM X-Force ID: 281320.
Max CVSS
8.4
EPSS Score
0.04%
Published
2024-02-22
Updated
2024-02-22
17 vulnerabilities found