EUVD-2022-27520

🗓️ 03 Oct 2025 20:07:09Reported by EUVDType

BMC firmware downgrade attack may impact IBM Power 9 operation. IBM X-Force ID: 221442

Reporter	Title	Published	Views	Family All 9
IBM Security Bulletins	Security Bulletin: This Power System update is being released to address CVE-2022-22374	23 Mar 202219:31	–	ibm
ATTACKERKB	CVE-2022-22374	23 Mar 202200:00	–	attackerkb
Circl	CVE-2022-22374	24 Mar 202221:29	–	circl
CNNVD	IBM Power System安全漏洞	24 Mar 202200:00	–	cnnvd
CVE	CVE-2022-22374	24 Mar 202217:20	–	cve
Cvelist	CVE-2022-22374	24 Mar 202217:20	–	cvelist
NVD	CVE-2022-22374	24 Mar 202218:15	–	nvd
OSV	CVE-2022-22374	24 Mar 202218:15	–	osv
Prion	Buffer overflow	24 Mar 202218:15	–	prion

[
  {
    "enisaIdVendor": [
      {
        "id": "6850c656-ad76-37bd-b75a-c21aeb0b09bf",
        "vendor": {
          "name": "IBM"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "11c304ea-1577-3931-af7f-2a1206e07e96",
        "product": {
          "name": "Power 9 AC922"
        },
        "product_version": "OP910"
      },
      {
        "id": "55123b7c-e9ba-3626-b0f4-92a3c67577ad",
        "product": {
          "name": "Power 9 AC922"
        },
        "product_version": "OP920"
      },
      {
        "id": "a256b892-3acb-3568-b6e6-e8a1c9d11396",
        "product": {
          "name": "Power 9 AC922"
        },
        "product_version": "OP940"
      },
      {
        "id": "f42aa188-a203-3dd2-b246-a4a162c2ca78",
        "product": {
          "name": "Power 9 AC922"
        },
        "product_version": "OP930"
      }
    ]
  }
]

Source	Link
ibm	www.ibm.com/support/pages/node/6565075
exchange	www.exchange.xforce.ibmcloud.com/vulnerabilities/221442

03 Oct 2025 20:07Current

7High risk

Vulners AI Score7

CVSS 36.5

CVSS 28.5

CVSS 3.19.1

EPSS0.0025