2 matches found
CVE-2021-20487
CVE-2021-20487 affects IBM Power9 Self Boot Engine (SBE). The SBE vulnerability could let a privileged user inject malicious code and compromise the integrity of the host firmware by bypassing the host firmware signature verification process. Affects IBM Power Systems with Power9 SBE, with remedi...
Security Bulletin: This Power System update is being released to address CVE-2021-20487
Summary Power9: A new Power Systems firmware update is being released to address Common Vulnerabilities and Exposures issue number CVE-2021-20487. The Self Boot EngineSBE can be compromised from the service processor to allow injection of malicious code. An attacker that gains root access to the...