CVE-2016-0266

IBM AIX 5.3, 6.1, 7.1, and 7.2 and VIOS 2.2.x do not default to the latest TLS version, which makes it easier for man-in-the-middle attackers to obtain sensitive information via unspecified vectors.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
3.7 LOW
NETWORK
HIGH
NONE
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N
ibmCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 70%
VendorProductVersion
ibmvios
2.2.0.10
ibmvios
2.2.0.11
ibmvios
2.2.0.12
ibmvios
2.2.0.13
ibmvios
2.2.1.0
ibmvios
2.2.1.1
ibmvios
2.2.1.3
ibmvios
2.2.1.4
ibmvios
2.2.1.5
ibmvios
2.2.1.6
ibmvios
2.2.1.7
ibmvios
2.2.1.8
ibmvios
2.2.1.9
ibmvios
2.2.2.0
ibmvios
2.2.2.1
ibmvios
2.2.2.2
ibmvios
2.2.2.3
ibmvios
2.2.2.4
ibmvios
2.2.2.5
ibmvios
2.2.3.0
ibmvios
2.2.3.1
ibmvios
2.2.3.2
ibmvios
2.2.3.3
ibmvios
2.2.3.4
ibmvios
2.2.3.50
ibmvios
2.2.3.51
ibmvios
2.2.3.52
ibmvios
2.2.3.60
ibmvios
2.2.3.70
ibmvios
2.2.4.0
ibmvios
2.2.4.10
ibmvios
2.2.4.21
ibmvios
2.2.4.22
ibmaix
5.3
ibmaix
6.1
ibmaix
7.1
ibmaix
7.2
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://www-01.ibm.com/support/docview.wss?uid=swg1IV86116
http://www-01.ibm.com/support/docview.wss?uid=swg1IV86117
http://www-01.ibm.com/support/docview.wss?uid=swg1IV86118
http://www-01.ibm.com/support/docview.wss?uid=swg1IV86119
http://www-01.ibm.com/support/docview.wss?uid=swg1IV86120
http://www-01.ibm.com/support/docview.wss?uid=swg1IV86132
http://www.securityfocus.com/bid/92150
http://www.securitytracker.com/id/1036467
https://aix.software.ibm.com/aix/efixes/security/nettcp_advisory2.asc
http://www-01.ibm.com/support/docview.wss?uid=swg1IV86116
http://www-01.ibm.com/support/docview.wss?uid=swg1IV86117
http://www-01.ibm.com/support/docview.wss?uid=swg1IV86118
http://www-01.ibm.com/support/docview.wss?uid=swg1IV86119
http://www-01.ibm.com/support/docview.wss?uid=swg1IV86120
http://www-01.ibm.com/support/docview.wss?uid=swg1IV86132
http://www.securityfocus.com/bid/92150
http://www.securitytracker.com/id/1036467
https://aix.software.ibm.com/aix/efixes/security/nettcp_advisory2.asc