The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.

Computer vulnerabilities of IBM i

ISC BIND: privilege escalation via Update-policy Rules
An attacker can bypass restrictions via Update-policy Rules of ISC BIND, in order to escalate his privileges...
6350241, CERTFR-2020-AVI-523, CVE-2020-8624, DSA-4752-1, K91090139, openSUSE-SU-2020:1699-1, openSUSE-SU-2020:1701-1, SSA:2020-234-01, SUSE-SU-2020:2914-1, Synology-SA-20:19, USN-4468-1, USN-4468-2, VIGILANCE-VUL-33130
Eclipse OpenJ9: denial of service via System.arraycopy
An attacker can trigger a fatal error via System.arraycopy() of Eclipse OpenJ9, in order to trigger a denial of service...
6338655, CVE-2019-17639, RHSA-2020:3386-01, RHSA-2020:3387-01, RHSA-2020:3388-01, SUSE-SU-2020:14482-1, SUSE-SU-2020:14484-1, SUSE-SU-2020:2453-1, SUSE-SU-2020:2461-1, SUSE-SU-2020:2482-1, VIGILANCE-VUL-33041
Apache httpd: IP Address Spoofing via mod_remoteip/mod_rewrite
An attacker can spoof an IP address via mod_remoteip/mod_rewrite of Apache httpd, in order to deceive the victim...
6327365, 6328811, bulletinjul2020, CVE-2020-11985, FEDORA-2020-0d3d3f5072, FEDORA-2020-189a1e6c3e, SUSE-SU-2020:2450-1, VIGILANCE-VUL-33035
IBM i SQL: information disclosure
An attacker can bypass access restrictions to data of IBM i SQL, in order to obtain sensitive information...
6208661, CVE-2020-4345, VIGILANCE-VUL-32285
Apache httpd mod_rewrite: open redirect
An attacker can deceive the user of Apache httpd mod_rewrite, in order to redirect him to a malicious site...
6194883, 6224298, CERTFR-2020-AVI-183, cpujul2020, CVE-2020-1927, DSA-4757-1, FEDORA-2020-0d3d3f5072, FEDORA-2020-189a1e6c3e, K23153696, openSUSE-SU-2020:0597-1, RHSA-2020:3958-01, SUSE-SU-2020:1111-1, SUSE-SU-2020:1126-1, SUSE-SU-2020:1272-1, SYMSA16056, USN-4458-1, VIGILANCE-VUL-31923
Apache httpd mod_proxy_ftp: denial of service via FTP Backend
An attacker can trigger a fatal error via FTP Backend of Apache httpd mod_proxy_ftp, in order to trigger a denial of service...
6194883, 6224298, CERTFR-2020-AVI-183, cpujul2020, CVE-2020-1934, DSA-4757-1, FEDORA-2020-0d3d3f5072, FEDORA-2020-189a1e6c3e, openSUSE-SU-2020:0597-1, RHSA-2020:3958-01, SUSE-SU-2020:1111-1, SUSE-SU-2020:1126-1, SUSE-SU-2020:1272-1, SUSE-SU-2020:14342-1, USN-4458-1, VIGILANCE-VUL-31922
Python: denial of service via urllib.request.AbstractBasicAuthHandler
An attacker can trigger a fatal error via urllib.request.AbstractBasicAuthHandler of Python, in order to trigger a denial of service...
6206164, 6206166, CVE-2020-8492, DLA-2280-1, FEDORA-2020-16167a66a2, FEDORA-2020-4cf7c3910b, FEDORA-2020-6a88dad4a0, FEDORA-2020-8bdd3fd7a4, FEDORA-2020-ea5bdbcc90, openSUSE-SU-2020:0274-1, RHSA-2020:3888-01, RHSA-2020:4285-01, SUSE-SU-2020:0467-1, SUSE-SU-2020:0510-1, SUSE-SU-2020:0557-1, SUSE-SU-2020:14306-1, USN-4333-1, USN-4333-2, VIGILANCE-VUL-31481
Oracle Java: vulnerabilities of January 2020
Several vulnerabilities were announced in Oracle products...
1289194, 3260187, 5694963, 6120873, 6121041, 6199287, 6199289, 6201679, 6210521, 6210522, 6217590, 6235912, 6245356, 6248703, 6248705, 6250533, 6256052, 6257207, 6338657, 6338659, CERTFR-2020-AVI-035, CERTFR-2020-AVI-176, cpujan2020, CVE-2020-2583, CVE-2020-2585, CVE-2020-2590, CVE-2020-2593, CVE-2020-2601, CVE-2020-2604, CVE-2020-2654, CVE-2020-2655, CVE-2020-2659, DLA-2128-1, DSA-2020-062, DSA-2020-135, DSA-2020-198, DSA-4605-1, DSA-4621-1, FEDORA-2020-0a2dd63bf0, FEDORA-2020-202cb87e26, FEDORA-2020-2ed6716c30, FEDORA-2020-7e042e371a, FEDORA-2020-d735a887d1, FEDORA-2020-ebbf986d01, openSUSE-SU-2020:0113-1, openSUSE-SU-2020:0147-1, RHSA-2020:0122-01, RHSA-2020:0128-01, RHSA-2020:0157-01, RHSA-2020:0196-01, RHSA-2020:0202-01, RHSA-2020:0231-01, RHSA-2020:0232-01, RHSA-2020:0465-01, RHSA-2020:0467-01, RHSA-2020:0468-01, RHSA-2020:0469-01, RHSA-2020:0470-01, RHSA-2020:0541-01, RHSA-2020:0632-01, RHSA-2020:2236-01, RHSA-2020:2237-01, RHSA-2020:2238-01, RHSA-2020:2239-01, RHSA-2020:2241-01, RHSA-2020:3386-01, RHSA-2020:3387-01, RHSA-2020:3388-01, SB10315, SUSE-SU-2020:0140-1, SUSE-SU-2020:0213-1, SUSE-SU-2020:0261-1, SUSE-SU-2020:0456-1, SUSE-SU-2020:0466-1, SUSE-SU-2020:0528-1, SUSE-SU-2020:0628-1, SUSE-SU-2020:14286-1, SUSE-SU-2020:14287-1, SUSE-SU-2020:14398-1, SUSE-SU-2020:1683-1, SUSE-SU-2020:1684-1, SUSE-SU-2020:1685-1, USN-4257-1, VIGILANCE-VUL-31331
Eclipse OpenJ9: privilege escalation via Diagnostic Operations
An attacker can bypass restrictions via Diagnostic Operations of Eclipse OpenJ9, in order to escalate his privileges...
1288366, CVE-2019-17631, RHSA-2019:4113-01, RHSA-2019:4115-01, RHSA-2020:0046-01, SUSE-SU-2020:0001-1, SUSE-SU-2020:0024-1, VIGILANCE-VUL-31093
IBM Navigator for i: Cross Site Scripting
An attacker can trigger a Cross Site Scripting of IBM Navigator for i, in order to run JavaScript code in the context of the web site...
1100085, CVE-2019-4450, VIGILANCE-VUL-30829
Our database contains other pages. You can request a free trial to read them.

Display information about IBM i: