CVE-2023-25683
Last modified
CVE-2023-25683 is a high-severity vulnerability rated 7.5/10 on the CVSS scale. IBM PowerVM Hypervisor FW950.00 through FW950.71, FW1010.00 through FW1010.40, FW1020.00 through FW1020.20, and FW1030.00 through FW1030.11 could allow an attacker to obtain sensitive information if they gain service access to the HMC. IBM X-Force ID: 247592.. EPSS estimates a 0.63% chance of exploitation in the next 30 days.
Description
IBM PowerVM Hypervisor FW950.00 through FW950.71, FW1010.00 through FW1010.40, FW1020.00 through FW1020.20, and FW1030.00 through FW1030.11 could allow an attacker to obtain sensitive information if they gain service access to the HMC. IBM X-Force ID: 247592.
Metrics
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Ibm | Powervm Hypervisor | >= fw950, <= fw950.71 |
| Ibm | Powervm Hypervisor | >= fw1010, <= fw1010.40 |
| Ibm | Powervm Hypervisor | >= fw1020, <= fw1020.20 |
| Ibm | Powervm Hypervisor | >= fw1030, <= fw1030.11 |
References
- https://exchange.xforce.ibmcloud.com/vulnerabilities/247592VDB Entry, Vendor Advisory
- https://www.ibm.com/support/pages/node/7002721Vendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/247592VDB Entry, Vendor Advisory
- https://www.ibm.com/support/pages/node/7002721Vendor Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2023-25683?
How severe is CVE-2023-25683?
How do I fix CVE-2023-25683?
Are you affected by CVE-2023-25683?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST