Unrated severityNVD Advisory· Published Nov 13, 2025· Updated Feb 26, 2026

AIX Insufficiently Protected Credentials

CVE-2025-36096

Description

IBM AIX 7.2, and 7.3 and IBM VIOS 3.1, and 4.1 stores NIM private keys used in NIM environments in an insecure way which is susceptible to unauthorized access by an attacker using man in the middle techniques.

Affected products

IBM/Aixv5
cpe:2.3:o:ibm:aix:7.2:*:*:*:*:*:*:*
Range: 7.2
IBM/Viosv5
cpe:2.3:a:ibm:vios:3.1:*:*:*:*:*:*:*
Range: 3.1

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.ibm.com/support/pages/node/7251173mitrevendor-advisorypatch

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000