Vulnerabilities > IBM > Powervm Hypervisor > Critical

DATE CVE VULNERABILITY TITLE RISK
2022-11-11 CVE-2022-34331 Improper Authentication vulnerability in IBM Powervm Hypervisor Fw1010/Fw950
After performing a sequence of Power FW950, FW1010 maintenance operations a SRIOV network adapter can be improperly configured leading to desired VEPA configuration being disabled.
network
low complexity
ibm CWE-287
critical
9.8
2021-12-10 CVE-2021-38917 Unspecified vulnerability in IBM Powervm Hypervisor Fw860/Fw940/Fw950
IBM PowerVM Hypervisor FW860, FW940, and FW950 could allow an attacker that gains service access to the FSP can read and write arbitrary host system memory through a series of carefully crafted service procedures.
network
low complexity
ibm
critical
9.1