IBM PowerVM Hypervisor
Moderate fix5 remedies
cpe:2.3:h:ibm:powervm_hypervisor:*:*:*:*:*:*:*, +2 more
Moderate fix5 remedies
- >= FW1050.00, <= FW1050.50
- >= FW1060.00, <= FW1060.40
- >= FW950.00, <= FW950.E0
IBM PowerVM Hypervisor Denial-of-Service Vulnerability via Crafted Hypervisor Calls
Vulnerability
Patched
A denial-of-service vulnerability has been identified in IBM PowerVM Hypervisor versions FW950.00 through FW950.E0, FW1050.00 through FW1050.50, and FW1060.00 through FW1060.40. This vulnerability could allow a local privileged user to disrupt service by issuing a specially crafted IBM i hypervisor call. Such calls could either disclose memory contents or consume excessive memory resources, potentially leading to a system crash or memory exhaustion.
Impact
Exploitation of this vulnerability can cause a system crash or excessive memory consumption, disrupting normal operations.
Remediation
Users should upgrade to version 950.E1(950_182), 950.F0(950_192), FW1050.51(1050_095), FW1050.60(1050_090), FW1060.41(1060_120) or newer, depending on their specific Power System model.
Added: Sep 14, 2025, 1:18 PM
Updated: Sep 14, 2025, 1:18 PM
Vulnerability Rating
Custom Algorithm
spread
4.5impact
2.5exploitability
3.0remediation
7.7relevance
0.5threat
0.0urgency
2.9incentive
1.7Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.