Vulnerabilities > CVE-2015-1950 - Credentials Management vulnerability in IBM Powervc 1.2.2.1/1.2.2.2
Attack vector
LOCAL Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
IBM PowerVC Standard Edition 1.2.2.1 through 1.2.2.2 does not require authentication for access to the Python interpreter with nova credentials, which allows KVM guest OS users to discover certain PowerVC credentials and bypass intended access restrictions via unspecified Python code.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 2 |