CRITICALπŸ‡΅πŸ‡± Wersja polska

CVE-2023-30438

CVSS 9.3v3.1pub. 2023-05-17upd. 2024-11-21

An internally discovered vulnerability in PowerVM on IBM Power9 and Power10 systems could allow an attacker with privileged user access to a logical partition to perform an undetected violation of the isolation between logical partitions which could lead to data leakage or the execution of arbitrary code in other logical partitions on the same physical server. IBM X-Force ID: 252706.

CVSS Vector
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
  • IBM Power System E1050

    HW
    Ibm
    wszystkie wersje
  • IBM Power System E1080

    HW
    Ibm
    wszystkie wersje
  • IBM Power System E950

    HW
    Ibm
    wszystkie wersje
  • IBM Power System E980

    HW
    Ibm
    wszystkie wersje
  • IBM Power System H922

    HW
    Ibm
    wszystkie wersje
  • IBM Power System H924

    HW
    Ibm
    wszystkie wersje
  • IBM Power System L1022

    HW
    Ibm
    wszystkie wersje
  • IBM Power System L1024

    HW
    Ibm
    wszystkie wersje
  • IBM Power System L922

    HW
    Ibm
    wszystkie wersje
  • IBM Power System S1014

    HW
    Ibm
    wszystkie wersje
  • IBM Power System S1022

    HW
    Ibm
    wszystkie wersje
  • IBM Power System S1022s

    HW
    Ibm
    wszystkie wersje
  • IBM Power System S1024

    HW
    Ibm
    wszystkie wersje
  • IBM Power System S914

    HW
    Ibm
    wszystkie wersje
  • IBM Power System S922

    HW
    Ibm
    wszystkie wersje
  • IBM Power System S924

    HW
    Ibm
    wszystkie wersje
  • IBM Powervm Hypervisor

    OS
    Ibm
    fw1030.00 – fw1030.11 (bez)fw1010.00 – fw1010.51 (bez)fw950 – fw950.71 (bez)fw1020.00 – fw1020.31 (bez)
πŸ”΅
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References

Related vulnerabilities

CVE-2021-38917CRITICAL9.1ten sam produkt

IBM PowerVM Hypervisor FW860, FW940, and FW950 could allow an attacker that gains service access to the FSP ca...

CVE-2021-38923CRITICAL9.1ten sam produkt

IBM PowerVM Hypervisor FW1010 could allow a privileged user to gain access to another VM due to assigning dupl...

CVE-2021-38918HIGH7.5ten sam produkt

IBM PowerVM Hypervisor FW860, FW940, FW950, and FW1010, through a specific sequence of VM management operation...

CVE-2025-36238MEDIUM6.0ten sam produkt

IBM PowerVM Hypervisor FW1110.00 through FW1110.03, FW1060.00 through FW1060.51, and FW950.00 through FW950.F0...

CVE-2025-36035MEDIUM6.7ten sam produkt

IBM PowerVM Hypervisor FW950.00 through FW950.E0, FW1050.00 through FW1050.50, and FW1060.00 through FW1060.40...

CVE-2023-30438 β€” Ibm β€” Power System E1050 β€” CRITICAL β€” CVSS 9.3 | CVEbaza.pl