Vulnerabilities > IBM > AIX > Low
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-06-17 | CVE-2021-29706 | Unspecified vulnerability in IBM AIX 7.1.0 IBM AIX 7.1 could allow a non-privileged local user to exploit a vulnerability in the trace facility to expose sensitive information or cause a denial of service. | 3.6 |
| 2021-01-20 | CVE-2020-4887 | Unspecified vulnerability in IBM AIX and Vios IBM AIX 7.1, 7.2 and AIX VIOS 3.1 could allow a local user to exploit a vulnerability in the gencore user command to create arbitrary files in any directory. | 2.1 |
| 2020-03-16 | CVE-2019-4619 | Information Exposure Through an Error Message vulnerability in IBM MQ, MQ Appliance and Websphere MQ IBM MQ and IBM MQ Appliance 7.1, 7.5, 8.0, 9.0 LTS, 9.1 LTS, and 9.1 CD could allow a local attacker to obtain sensitive information by inclusion of sensitive data within trace. | 2.1 |
| 2020-03-16 | CVE-2019-4719 | Unspecified vulnerability in IBM MQ, MQ Appliance and Websphere MQ IBM MQ and IBM MQ Appliance 7.1, 7.5, 8.0, 9.0 LTS, 9.1 LTS, and 9.1 CD could allow a local attacker to obtain sensitive information by inclusion of sensitive data within runmqras data. | 2.1 |
| 2018-06-22 | CVE-2018-1655 | Information Exposure vulnerability in IBM AIX IBM AIX 5.3, 6.1, 7.1, and 7.2 contains a vulnerability in the rmsock command that may be used to expose kernel memory. | 2.1 |
| 2017-02-01 | CVE-2016-8963 | Information Exposure vulnerability in IBM Bigfix Inventory and License Metric Tool IBM BigFix Inventory v9 stores potentially sensitive information in log files that could be read by a local user. | 2.1 |
| 2017-02-01 | CVE-2016-8967 | Credentials Management vulnerability in IBM Bigfix Inventory and License Metric Tool IBM BigFix Inventory v9 9.2 stores user credentials in plain in clear text which can be read by a local user. | 2.1 |
| 2017-02-01 | CVE-2016-8981 | Information Exposure vulnerability in IBM Bigfix Inventory and License Metric Tool IBM BigFix Inventory v9 allows web pages to be stored locally which can be read by another user on the system. | 2.1 |
| 2014-10-15 | CVE-2014-3566 | Cryptographic Issues vulnerability in multiple products The SSL protocol 3.0, as used in OpenSSL through 1.0.1i and other products, uses nondeterministic CBC padding, which makes it easier for man-in-the-middle attackers to obtain cleartext data via a padding-oracle attack, aka the "POODLE" issue. | 3.4 |
| 2014-09-04 | CVE-2014-4805 | Information Exposure vulnerability in IBM DB2 IBM DB2 10.5 before FP4 on Linux and AIX creates temporary files during CDE table LOAD operations, which allows local users to obtain sensitive information by reading a file while a LOAD is occurring. | 2.1 |