3 matches found
CVE-2015-0136
powervc-iso-import in IBM PowerVC 1.2.0.x before 1.2.0.4 and 1.2.1.x before 1.2.2 places an access token on the command line during IVM and PowerKVM management, which allows local users to obtain sensitive information by listing the process...
CVE-2015-0136
CVE-2015-0136 (IBM PowerVC) affects powervc-iso-import in IBM PowerVC 1.2.0.x before 1.2.0.4 and 1.2.1.x before 1.2.2. The root cause is that an access token is placed on the command line during IVM and PowerKVM management, enabling local users to learn sensitive information by listing the proces...
KLA10489 Multiple vulnerabilities in IBM PowerVC
Multiple vulnerabilities have been found in IBM PowerVC. Malicious users can exploit these vulnerabilities to spoof user interface or obtain sensitive information. Below is a complete list of vulnerabilities 1. Improper certificate validation can be exploited remotely via a specially designed...