Every CVE whose affected-product data names Ibm Os 400, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (8)
CVE-2006-6836 — CVSS 10.0 (critical): Multiple unspecified vulnerabilities in osp-cert in IBM OS/400 V5R3M0 have unspecified impact and attack vectors, related to ASN.1 parsing.
CVE-2007-3537 — CVSS 7.8 (high): IBM OS/400 (aka i5/OS) V4R2M0 through V5R3M0 on iSeries machines sends responses to TCP SYN-FIN packets, which allows remote attackers to…
CVE-2007-0442 — CVSS 5.0 (medium): Unspecified vulnerability in IBM OS/400 R530 and R535 has unknown impact and remote attack vectors, related to an "Integrity Problem"…
CVE-2005-1182 — CVSS 5.0 (medium): Unknown vulnerability in Incoming Remote Command (iSeries Access for Windows Remote Command service) in IBM OS/400 R510, R520, and R530…
CVE-2008-2709 — CVSS 4.7 (medium): Buffer overflow in the BrSmRcvAndCheck function in the RCHMGR module on IBM OS/400 V5R4M0, V5R4M5, and V6R1M0 allows local users to cause a…
CVE-2008-0694 — CVSS 4.3 (medium): Cross-site scripting (XSS) vulnerability in the HTTP Server in IBM OS/400 V5R3M0 and V5R4M0 allows remote attackers to inject arbitrary web…
CVE-2005-0899 — CVSS 2.1 (low): AS/400 running OS400 5.2 installs and enables LDAP by default, which allows remote authenticated users to obtain OS/400 user profiles by…
CVE-2002-1731 — CVSS 2.1 (low): The System Request menu in IBM AS/400 allows local users to list valid user accounts by viewing the object names that are type USRPRF.