PT-2023-20242 · Ibm · Ibm Powervm Hypervisor
Published
2023-06-15
·
Updated
2023-06-21
·
CVE-2023-25683
CVSS v3.1
7.5
High
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
IBM PowerVM Hypervisor versions FW950.00 through FW950.71
IBM PowerVM Hypervisor versions FW1010.00 through FW1010.40
IBM PowerVM Hypervisor versions FW1020.00 through FW1020.20
IBM PowerVM Hypervisor versions FW1030.00 through FW1030.11
Description
The issue allows an attacker to obtain sensitive information if they gain service access to the HMC.
Recommendations
For versions FW950.00 through FW950.71, update to a version outside of this range to resolve the issue.
For versions FW1010.00 through FW1010.40, update to a version outside of this range to resolve the issue.
For versions FW1020.00 through FW1020.20, update to a version outside of this range to resolve the issue.
For versions FW1030.00 through FW1030.11, update to a version outside of this range to resolve the issue.
Fix
Information Disclosure
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Ibm Powervm Hypervisor