CVE-2021-29860

Description

IBM AIX 7.1, 7.2, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the libc.a library to expose sensitive information. IBM X-Force ID: 206084.

CVSS breakdown

CVSS 3.0

User Interaction

None

Attack Complexity

Low

Confidentiality

High

Availability

None

Integrity

None

Privileges Required

None

Attack Vector

Local

Scope

Unchanged

Changed

Unchanged

Affected products

ibm / aix7.1 – 7.1
ibm / aix7.2 – 7.2
ibm / vios3.1 – 3.1

References

MISChttps://www.ibm.com/support/pages/node/6516774
MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/206084