Skip to main content

Powerha System Mirror

2 CVEs product

Monthly

CVE-2024-55897 MEDIUM Monitor

IBM PowerHA SystemMirror for i 7.4 and 7.5 does not set the secure attribute on authorization tokens or session cookies. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

IBM Information Disclosure Powerha System Mirror
NVD
CVSS 3.1
4.3
EPSS
0.1%
CVE-2015-5005 HIGH This Week

CSPOC in IBM PowerHA SystemMirror on AIX 6.1 and 7.1 allows remote authenticated users to perform an "su root" action by leveraging presence on the cluster-wide password-change list. Rated high severity (CVSS 8.5), this vulnerability is remotely exploitable. No vendor patch available.

IBM Privilege Escalation Powerha System Mirror
NVD
CVSS 2.0
8.5
EPSS
1.3%
EPSS 0% CVSS 4.3
MEDIUM Monitor

IBM PowerHA SystemMirror for i 7.4 and 7.5 does not set the secure attribute on authorization tokens or session cookies. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

IBM Information Disclosure Powerha System Mirror
NVD
EPSS 1% CVSS 8.5
HIGH This Week

CSPOC in IBM PowerHA SystemMirror on AIX 6.1 and 7.1 allows remote authenticated users to perform an "su root" action by leveraging presence on the cluster-wide password-change list. Rated high severity (CVSS 8.5), this vulnerability is remotely exploitable. No vendor patch available.

IBM Privilege Escalation Powerha System Mirror
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy