CVE-2016-0266IBM Vios vulnerability

CWE-2543 documents3 sources
Severity
3.7LOWNVD
EPSS
0.7%
top 27.96%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
IBM AIXIBM Vios
Timeline
PublishedAug 8
Latest updateMay 13

Description

IBM AIX 5.3, 6.1, 7.1, and 7.2 and VIOS 2.2.x do not default to the latest TLS version, which makes it easier for man-in-the-middle attackers to obtain sensitive information via unspecified vectors.

CVSS vector

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:NExploitability: 2.2 | Impact: 1.4

Affected Packages2 packages

NVDibm/vios33 versions+32
NVDibm/aix4 versions+3

🔴Vulnerability Details

2
GHSA
GHSA-mcgf-p4mp-v794: IBM AIX 52022-05-13
CVEList
CVE-2016-0266: IBM AIX 52016-08-08
CVE-2016-0266 — IBM Vios vulnerability | cvebase