Powervc Security Vulnerabilities and Issues — Powervc CVE List

Lucene search

IbmPowervc

3 matches found

CVE•added 2015/03/24 12:59 a.m.•36 views

CVE-2015-0136

powervc-iso-import in IBM PowerVC 1.2.0.x before 1.2.0.4 and 1.2.1.x before 1.2.2 places an access token on the command line during IVM and PowerKVM management, which allows local users to obtain sensitive information by listing the process.

2.1CVSS5.9AI score0.00118EPSS

CVE•added 2014/08/29 10:0 a.m.•32 views

CVE-2014-3093

IBM PowerVC 1.2.0 before FP3 and 1.2.1 before FP2 uses cleartext passwords in (1) api-paste.ini, (2) debug logs, (3) the installation process, (4) environment checks, (5) powervc-ldap-config, (6) powervc-restore, and (7) powervc-diag, which allows local users to obtain sensitive information by ente...

2.1CVSS5.8AI score0.00054EPSS

CVE•added 2014/08/20 11:17 a.m.•31 views

CVE-2014-4750

IBM PowerVC Express Edition 1.2.0 before FixPack3 establishes an FTP session for transferring files to a managed IVM, which allows remote attackers to discover credentials by sniffing the network.

2.9CVSS6.7AI score0.00162EPSS