216.73.217.80

CVE-2025-36096

· Published 13/11/2025 22:15 · Modified 19/11/2025 22:11

Labels: CVE-2025-36096 2025-11-13CVE-2025-36096CWE-522[email protected]

Essential information

Published
13/11/2025 22:15
Modified
19/11/2025 22:11
Author
Creator
CVSS
9.0 CRITICAL (v3.1)
CISA KEV
No
CWE
CVSS vector
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H

CVSS metrics

Description

IBM AIX 7.2, and 7.3 and IBM VIOS 3.1, and 4.1 stores NIM private keys used in NIM environments in an insecure way which is susceptible to unauthorized access by an attacker using man in the middle techniques.

NVD status

Status
Analyzed — CVE has had analysis completed and all data associations made.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
ibm / vios cpe:2.3:a:ibm:vios:3.1.0:*:*:*:*:*:*:*
ibm / vios cpe:2.3:a:ibm:vios:4.1.0:*:*:*:*:*:*:*
ibm / aix cpe:2.3:o:ibm:aix:7.2:*:*:*:*:*:*:*
ibm / aix cpe:2.3:o:ibm:aix:7.3:*:*:*:*:*:*:*

References