CVE-2023-30440
IBM PowerVM Hypervisor denial of service
Vexday Risk Score
13Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 6.7EPSS 0.2%KEV nãoPoC —Nuclei —Metasploit —Patch referenciado
Lifecycle
23 May 2023Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
IBM PowerVM Hypervisor FW860.00 through FW860.B3, FW950.00 through FW950.70, FW1010.00 through FW1010.50, FW1020.00 through FW1020.30, and FW1030.00 through FW1030.10 could allow a local attacker with control a partition that has been assigned SRIOV virtual function (VF) to cause a denial of service to a peer partition or arbitrary data corruption. IBM X-Force ID: 253175.
CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:N/I:L/A:H
Affected products
IBM · PowerVM Hypervisor