CVE-2011-1375 — IBM AIX vulnerability

CWE-2643 documents3 sources

Severity

4.9MEDIUMNVD

EPSS

0.1%

top 83.53%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

IBM AIX

Timeline

PublishedNov 11

Latest updateMay 17

Description

IBM AIX 6.1 and 7.1 does not restrict the wpar_limits_config and wpar_limits_modify system calls, which allows local users to cause a denial of service (system crash) via a crafted call.

CVSS vector

AV:L/AC:L/C:N/I:N/A:CExploitability: 3.9 | Impact: 6.9

Affected Packages1 packages

▶NVDibm/aix6.1, 7.1+1

🔴Vulnerability Details

GHSA

GHSA-9qpg-7p56-5mjx: IBM AIX 6↗2022-05-17

▶

CVEList

CVE-2011-1375: IBM AIX 6↗2011-11-11

▶