Hardware Management Console Security Vulnerabilities and Issues — Hardware Management Console CVE List

Lucene search

IbmHardware Management Console

14 matches found

CVE•added 2023/10/16 2:15 a.m.•93 views

CVE-2023-38280

IBM HMC (Hardware Management Console) 10.1.1010.0 and 10.2.1030.0 could allow a local user to escalate their privileges to root access on a restricted shell. IBM X-Force ID: 260740.

8.4CVSS7.8AI score0.00028EPSS

CVE•added 2022/04/11 7:15 p.m.•71 views

CVE-2021-38930

IBM System Storage DS8000 Management Console (HMC) R8.5 88.5x.x.x, R9.1 89.1x.0.0, and R9.2 89.2x.0.0 could allow a remote attacker to obtain sensitive information through unpublished URLs. IBM X-Force ID: 210331.

7.5CVSS7AI score0.00247EPSS

CVE•added 2022/04/11 7:15 p.m.•68 views

CVE-2021-38929

7.5CVSS7AI score0.00228EPSS

CVE•added 2025/05/27 11:15 p.m.•44 views

CVE-2024-45094

IBM DS8900F and DS8A00 Hardware Management Console (HMC) is vulnerable to stored cross-site scripting. This vulnerability allows a privileged user to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted...

5.5CVSS5.2AI score0.00029EPSS

CVE•added 2009/05/28 8:30 p.m.•40 views

CVE-2009-1806

Unspecified vulnerability in IBM Hardware Management Console (HMC) 7 release 3.4.0 SP2, when Active Memory Sharing is used, has unknown impact and attack vectors, related to a shared memory partition and a shared memory pool with redundant paging Virtual I/O Server (VIOS) partitions. NOTE: some of ...

9.3CVSS6.5AI score0.00499EPSS

CVE•added 2008/11/10 4:15 p.m.•38 views

CVE-2008-5035

The Resource Monitoring and Control (RMC) daemon in IBM Hardware Management Console (HMC) 7 release 3.2.0 SP1 and 3.3.0 SP2 allows remote attackers to cause a denial of service (daemon crash or hang) via a packet with an invalid length.

5CVSS6.5AI score0.01827EPSS

CVE•added 2007/12/10 6:46 p.m.•37 views

CVE-2007-6293

Multiple unspecified vulnerabilities in IBM Hardware Management Console (HMC) 6 R1.3 allow attackers to gain privileges via "some HMC commands."

10CVSS6.9AI score0.00952EPSS

CVE•added 2009/01/20 4:30 p.m.•36 views

CVE-2009-0178

Unspecified vulnerability in IBM Hardware Management Console (HMC) 7 release 3.2.0 SP1 has unknown impact and attack vectors.

10CVSS6.5AI score0.00985EPSS

CVE•added 2007/12/10 6:46 p.m.•34 views

CVE-2007-6294

Multiple unspecified vulnerabilities in IBM Hardware Management Console (HMC) 3 R3.7 allow attackers to gain privileges via "some HMC commands."

4.9CVSS6.9AI score0.00064EPSS

CVE•added 2021/07/19 4:15 p.m.•34 views

CVE-2021-29707

IBM HMC (Hardware Management Console) V9.1.910.0 and V9.2.950.0 could allow a local user to escalate their privileges to root access on a restricted shell. IBM X-Force ID: 200879.

8.4CVSS7.4AI score0.00043EPSS

CVE•added 2007/12/10 9:46 p.m.•33 views

CVE-2007-6305

Multiple unspecified vulnerabilities in IBM Hardware Management Console (HMC) 7 R3.2.0 allow attackers to gain privileges via "some HMC commands."

4.6CVSS6.9AI score0.00116EPSS

CVE•added 2005/05/02 4:0 a.m.•32 views

CVE-2005-0539

Unknown vulnerability in IBM Hardware Management Console (HMC) before 4.4 for POWER5 servers allows local users to gain privileges, related to the Guided Setup Wizard.

4.6CVSS6.7AI score0.00061EPSS

CVE•added 2008/01/30 10:0 p.m.•32 views

CVE-2008-0495

Unspecified vulnerability in the Pegasus CIM Server in IBM Hardware Management Console (HMC) 7 R3.2.0 allows remote attackers to cause a denial of service via unspecified vectors.

7.8CVSS6.5AI score0.0275EPSS

CVE•added 2016/07/07 2:59 p.m.•31 views

CVE-2016-0230

IBM Power Hardware Management Console (HMC) 7.3 through 7.3.0 SP7, 7.9 through 7.9.0 SP3, 8.1 through 8.1.0 SP3, 8.2 through 8.2.0 SP2, 8.3 through 8.3.0 SP2, 8.4 through 8.4.0 SP1, and 8.5.0 allows physically proximate attackers to obtain root access via unspecified vectors.

7.2CVSS6.3AI score0.0008EPSS