CVE-2025-36194

Summary

IBM PowerVM Hypervisor FW1110.00 through FW1110.03, FW1060.00 through FW1060.51, and FW950.00 through FW950.F0 may expose a limited amount of data to a peer partition in specific shared processor configurations during certain operations.

Affected Software

VendorProductVersion RangeStatus
IBMPowerVM HypervisorFW1110.00 <= FW1110.03affected
IBMPowerVM HypervisorFW1060.00 <= FW1060.51affected
IBMPowerVM HypervisorFW950.00 <= FW950.F0affected

Weaknesses

  • CWE-1262: CWE-1262 Improper Access Control for Register Interface

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References