CVE-2023-46183Sensitive Information Exposure in IBM Powervm Hypervisor

CWE-200Sensitive Information Exposure3 documents3 sources
Severity
4.4MEDIUMNVD
CNA5.3
EPSS
0.0%
top 95.21%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
IBM Powervm Hypervisor
Timeline
PublishedFeb 6

Description

IBM PowerVM Hypervisor FW950.00 through FW950.90, FW1020.00 through FW1020.40, and FW1030.00 through FW1030.30 could allow a system administrator to obtain sensitive partition information. IBM X-Force ID: 269695.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:NExploitability: 0.8 | Impact: 3.6

Affected Packages2 packages

CVEListV5ibm/powervm_hypervisorFW950.00FW950.90+2
NVDibm/powervm_hypervisorfw950fw950.90+2

🔴Vulnerability Details

2
GHSA
GHSA-q7wc-c2ff-q9xq: IBM PowerVM Hypervisor FW9502024-02-06
CVEList
IBM PowerVM Hypervisor information disclosure2024-02-06
CVE-2023-46183 — Sensitive Information Exposure in IBM | cvebase