PT-2025-17546 · Ibm · Ibm Hardware Management Console

Name of the Vulnerable Software and Affected Versions: IBM Hardware Management Console - Power Systems versions 10.2.1030.0 through 10.3.1050.0 Description: The issue allows a local user to execute commands as a privileged user due to the execution of commands with unnecessary privileges...

PT-2025-17545 · Ibm · Ibm Hardware Management Console

Name of the Vulnerable Software and Affected Versions: IBM Hardware Management Console - Power Systems versions V10.2.1030.0 through V10.3.1050.0 Description: A local privilege escalation issue has been identified, allowing local users to execute commands due to improper validation of libraries...

Security Bulletin: IBM Cloud Pak System is vulnerable to arbitrary code execution due to Apache Log4j (CVE-2021-45046, CVE-2021-44228)

Summary Apache Log4j is used for logging in multiple components of the IBM Cloud Pak System CPS appliance: Logstash, VMware vCenter, IBM Hardware Management Console and product pattern type pType. Arbitrary code execution vulnerabilities have been identified in Apache Log4j. Vulnerability Details...

Security Bulletin: This Power System update is being released to address CVE 2021-3450 and CVE 2021-3449

Summary POWER9: In response to security issues with BMC's HTTPS server, a new Power System firmware update is being released to address Common Vulnerabilities and Exposures issue numbers CVE 2021-3450 and CVE 2021-3449. Vulnerability Details CVEID: CVE-2021-3450 DESCRIPTION: OpenSSL could allow a...

CVE-2008-0495

Unspecified vulnerability in the Pegasus CIM Server in IBM Hardware Management Console HMC 7 R3.2.0 allows remote attackers to cause a denial of service via unspecified vectors...

CVE-2009-1806

Unspecified vulnerability in IBM Hardware Management Console HMC 7 release 3.4.0 SP2, when Active Memory Sharing is used, has unknown impact and attack vectors, related to a shared memory partition and a shared memory pool with redundant paging Virtual I/O Server VIOS partitions. NOTE: some of...

Design/Logic Flaw

Unspecified vulnerability in IBM Hardware Management Console HMC 7 release 3.4.0 SP2, when Active Memory Sharing is used, has unknown impact and attack vectors, related to a shared memory partition and a shared memory pool with redundant paging Virtual I/O Server VIOS partitions. NOTE: some of...

CVE-2009-1806

Unspecified vulnerability in IBM Hardware Management Console HMC 7 release 3.4.0 SP2, when Active Memory Sharing is used, has unknown impact and attack vectors, related to a shared memory partition and a shared memory pool with redundant paging Virtual I/O Server VIOS partitions. NOTE: some of...

CVE-2009-0178

Unspecified vulnerability in IBM Hardware Management Console HMC 7 release 3.2.0 SP1 has unknown impact and attack vectors...

Design/Logic Flaw

The Resource Monitoring and Control RMC daemon in IBM Hardware Management Console HMC 7 release 3.2.0 SP1 and 3.3.0 SP2 allows remote attackers to cause a denial of service daemon crash or hang via a packet with an invalid length...

CVE-2008-0495

Unspecified vulnerability in the Pegasus CIM Server in IBM Hardware Management Console HMC 7 R3.2.0 allows remote attackers to cause a denial of service via unspecified vectors...

CVE-2008-0495

Technical details about CVE-2008-0495 are not publicly available in the provided documents. Monitor for updates; current records only state an unspecified denial-of-service vulnerability in IBM HMC Pegasus CIM Server with no exposed vectors or affected versions.

CVE-2008-0495

Unspecified vulnerability in the Pegasus CIM Server in IBM Hardware Management Console HMC 7 R3.2.0 allows remote attackers to cause a denial of service via unspecified vectors...

CVE-2007-6305

Multiple unspecified vulnerabilities in IBM Hardware Management Console HMC 7 R3.2.0 allow attackers to gain privileges via "some HMC commands."...

Command injection

Multiple unspecified vulnerabilities in IBM Hardware Management Console HMC 7 R3.2.0 allow attackers to gain privileges via "some HMC commands."...

CVE-2007-6294

Multiple unspecified vulnerabilities in IBM Hardware Management Console HMC 3 R3.7 allow attackers to gain privileges via "some HMC commands."...

CVE-2007-6294

Multiple unspecified vulnerabilities in IBM Hardware Management Console HMC 3 R3.7 allow attackers to gain privileges via "some HMC commands."...

CVE-2005-0539

Unknown vulnerability in IBM Hardware Management Console HMC before 4.4 for POWER5 servers allows local users to gain privileges, related to the Guided Setup Wizard...