CVE-2016-0281Improper Input Validation in IBM Vios

CWE-20Improper Input Validation3 documents3 sources
Severity
3.7LOWNVD
EPSS
3.6%
top 12.25%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
IBM AIXIBM Vios
Timeline
PublishedAug 8
Latest updateMay 13

Description

The mustendd driver in IBM AIX 5.3, 6.1, 7.1, and 7.2 and VIOS 2.2.x, when the jumbo_frames feature is not enabled, allows remote attackers to cause a denial of service (FC1763 or FC5899 adapter crash) via crafted packets.

CVSS vector

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:LExploitability: 2.2 | Impact: 1.4

Affected Packages2 packages

NVDibm/vios24 versions+23
NVDibm/aix4 versions+3

🔴Vulnerability Details

2
GHSA
GHSA-hm5j-3vjq-qp24: The mustendd driver in IBM AIX 52022-05-13
CVEList
CVE-2016-0281: The mustendd driver in IBM AIX 52016-08-08
CVE-2016-0281 — Improper Input Validation in IBM Vios | cvebase