Ibm Powervm Hypervisor — known CVE vulnerabilities
Every CVE whose affected-product data names Ibm Powervm Hypervisor, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (17)
CVE-2023-30438 — CVSS 9.3 (critical): An internally discovered vulnerability in PowerVM on IBM Power9 and Power10 systems could allow an attacker with privileged user access to…
CVE-2021-38917 — CVSS 9.1 (critical): IBM PowerVM Hypervisor FW860, FW940, and FW950 could allow an attacker that gains service access to the FSP can read and write arbitrary…
CVE-2021-38918 — CVSS 7.5 (high): IBM PowerVM Hypervisor FW860, FW940, FW950, and FW1010, through a specific sequence of VM management operations could lead to a violation…
CVE-2023-30440 — CVSS 6.7 (medium): IBM PowerVM Hypervisor FW860.00 through FW860.B3, FW950.00 through FW950.70, FW1010.00 through FW1010.50, FW1020.00 through FW1020.30, and…
CVE-2025-36035 — CVSS 6.7 (medium): IBM PowerVM Hypervisor FW950.00 through FW950.E0, FW1050.00 through FW1050.50, and FW1060.00 through FW1060.40 could allow a local…
CVE-2021-38937 — CVSS 6.5 (medium): IBM PowerVM Hypervisor FW940, FW950, and FW1010 could allow an authenticated user to cause the system to crash using a specially crafted…
CVE-2022-22445 — CVSS 6.5 (medium): An attacker that gains service access to the FSP (POWER9 only) or gains admin authority to a partition can compromise partition firmware.
CVE-2025-36238 — CVSS 6.0 (medium): IBM PowerVM Hypervisor FW1110.00 through FW1110.03, FW1060.00 through FW1060.51, and FW950.00 through FW950.F0 could allow a local user…
CVE-2021-29795 — CVSS 6.0 (medium): IBM PowerVM Hypervisor FW860, FW930, FW940, and FW950 could allow a local user to create a specially crafted sequence of hypervisor calls…
CVE-2023-25683 — CVSS 5.9 (medium): IBM PowerVM Hypervisor FW950.00 through FW950.71, FW1010.00 through FW1010.40, FW1020.00 through FW1020.20, and FW1030.00 through FW1030.11…
CVE-2022-34331 — CVSS 5.5 (medium): After performing a sequence of Power FW950, FW1010 maintenance operations a SRIOV network adapter can be improperly configured leading to…
CVE-2023-33851 — CVSS 5.3 (medium): IBM PowerVM Hypervisor FW950.00 through FW950.90, FW1020.00 through FW1020.40, and FW1030.00 through FW1030.30 could reveal sensitive…
CVE-2023-46183 — CVSS 5.3 (medium): IBM PowerVM Hypervisor FW950.00 through FW950.90, FW1020.00 through FW1020.40, and FW1030.00 through FW1030.30 could allow a system…
CVE-2024-41781 — CVSS 5.1 (medium): IBM PowerVM Platform KeyStore (IBM PowerVM Hypervisor FW950.00 through FW950.90, FW1030.00 through FW1030.60, FW1050.00 through FW1050.20…
CVE-2025-0986 — CVSS 4.5 (medium): IBM PowerVM Hypervisor FW1050.00 through FW1050.30 and FW1060.00 through FW1060.20 could allow a local user, under certain Linux processor…
CVE-2021-20505 — CVSS 4.4 (medium): The PowerVM Logical Partition Mobility(LPM) (PowerVM Hypervisor FW920, FW930, FW940, and FW950) encryption key exchange protocol can be…
CVE-2025-36194 — CVSS 2.8 (low): IBM PowerVM Hypervisor FW1110.00 through FW1110.03, FW1060.00 through FW1060.51, and FW950.00 through FW950.F0 may expose a limited amount…