IBM AIX nimsh Service Command Execution Vulnerability via Improper SSL/TLS Process Controls

Vulnerability

A vulnerability in the nimsh service of IBM AIX versions 7.2 and 7.3 could allow remote attackers to execute arbitrary commands. This issue arises from inadequate process controls in the SSL/TLS protection mechanisms of the nimsh service.

Impact

Exploitation of this vulnerability could lead to unauthorized execution of commands on the affected system.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

2.6

impact

7.5

exploitability

6.0

remediation

8.3

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

2.6

impact

7.5

exploitability

6.0

remediation

8.3

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

IBM AIX nimsh Service Command Execution Vulnerability via Improper SSL/TLS Process Controls

Vulnerability

Impact

Affected Products

IBM AIX

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating