Vulnerabilities > IBM > Medium

DATE CVE VULNERABILITY TITLE RISK
2022-12-23 CVE-2022-39164 Unspecified vulnerability in IBM AIX and Vios
IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1could allow a non-privileged local user to exploit a vulnerability in the AIX kernel to cause a denial of service.
local
low complexity
ibm
6.2
2022-12-23 CVE-2022-43848 Unspecified vulnerability in IBM AIX and Vios
IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the AIX perfstat kernel extension to cause a denial of service.
local
low complexity
ibm
6.2
2022-12-23 CVE-2022-43849 Unspecified vulnerability in IBM AIX and Vios
IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1could allow a non-privileged local user to exploit a vulnerability in the AIX pfcdd kernel extension to cause a denial of service.
local
low complexity
ibm
6.2
2022-12-23 CVE-2022-39165 Unspecified vulnerability in IBM AIX and Vios
IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1could allow a non-privileged local user to exploit a vulnerability in CAA to cause a denial of service.
local
low complexity
ibm
6.2
2022-12-23 CVE-2022-40233 Unspecified vulnerability in IBM AIX and Vios
IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the AIX TCP/IP kernel extension to cause a denial of service.
local
low complexity
ibm
6.2
2022-12-23 CVE-2022-43380 Unspecified vulnerability in IBM AIX and Vios
IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the AIX NFS kernel extension to cause a denial of service.
local
low complexity
ibm
6.2
2022-12-23 CVE-2022-43381 Unspecified vulnerability in IBM AIX and Vios
IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1could allow a non-privileged local user to exploit a vulnerability in the AIX SMB client to cause a denial of service.
local
low complexity
ibm
6.2
2022-12-22 CVE-2022-22456 Cross-site Scripting vulnerability in IBM Security Verify Governance 10.0.1
IBM Security Verify Governance, Identity Manager 10.0.1 is vulnerable to cross-site scripting.
network
low complexity
ibm CWE-79
6.1
2022-12-22 CVE-2022-22457 Cleartext Storage of Sensitive Information vulnerability in IBM Security Verify Governance 10.0.1
IBM Security Verify Governance, Identity Manager 10.0.1 stores sensitive information including user credentials in plain clear text which can be read by a local privileged user.
local
low complexity
ibm CWE-312
4.4
2022-12-22 CVE-2022-22458 Insufficiently Protected Credentials vulnerability in IBM Security Verify Governance 10.0.1
IBM Security Verify Governance, Identity Manager 10.0.1 stores user credentials in plain clear text which can be read by a remote authenticated user.
network
low complexity
ibm CWE-522
6.5