MEDIUM🇬🇧 English

CVE-2025-36238

CVSS 6.0v3.1pub. 2026-02-02upd. 2026-02-19

IBM PowerVM Hypervisor FW1110.00 through FW1110.03, FW1060.00 through FW1060.51, and FW950.00 through FW950.F0 could allow a local user with administration privileges to obtain sensitive information from a Virtual TPM through a series of PowerVM service procedures.

oryginał EN
CVSS Vector
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N
  • IBM Powervm Hypervisor

    OS
    Ibm
    fw1060.00fw1060.10fw1060.12fw1060.20fw1060.21fw1060.40fw1060.41fw1060.50fw1060.51fw1110.00fw1110.01fw1110.03fw950.00fw950.10fw950.11+ 19 więcej
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
CWE
Referencje

Powiązane podatności

CVE-2023-30438CRITICAL9.3ten sam produkt

An internally discovered vulnerability in PowerVM on IBM Power9 and Power10 systems could allow an attacker wi...

CVE-2021-38917CRITICAL9.1ten sam produkt

IBM PowerVM Hypervisor FW860, FW940, and FW950 could allow an attacker that gains service access to the FSP ca...

CVE-2021-38923CRITICAL9.1ten sam produkt

IBM PowerVM Hypervisor FW1010 could allow a privileged user to gain access to another VM due to assigning dupl...

CVE-2021-38918HIGH7.5ten sam produkt

IBM PowerVM Hypervisor FW860, FW940, FW950, and FW1010, through a specific sequence of VM management operation...

CVE-2025-36035MEDIUM6.7ten sam produkt

IBM PowerVM Hypervisor FW950.00 through FW950.E0, FW1050.00 through FW1050.50, and FW1060.00 through FW1060.40...