Vulnerability Description
IBM PowerVM Platform KeyStore (IBM PowerVM Hypervisor FW950.00 through FW950.90, FW1030.00 through FW1030.60, FW1050.00 through FW1050.20, and FW1060.00 through FW1060.10 functionality can be compromised if an attacker gains service access to the HMC. An attacker that gains service access to the HMC can locate and through a series of service procedures decrypt data contained in the Platform KeyStore.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ibm | Powervm Hypervisor | >= fw950.00, <= fw950.b0 |
| Ibm | Power System E950 | - |
| Ibm | Power System E980 | - |
| Ibm | Power System H922 | - |
| Ibm | Power System H924 | - |
| Ibm | Power System L922 | - |
| Ibm | Power System S914 | - |
| Ibm | Power System S922 | - |
| Ibm | Power System S924 | - |
Related Weaknesses (CWE)
References
- https://www.ibm.com/support/pages/node/7172698Vendor Advisory
FAQ
What is CVE-2024-41781?
CVE-2024-41781 is a vulnerability with a CVSS score of 5.1 (MEDIUM). IBM PowerVM Platform KeyStore (IBM PowerVM Hypervisor FW950.00 through FW950.90, FW1030.00 through FW1030.60, FW1050.00 through FW1050.20, and FW1060.00 through FW1060.10 functionality can be compromi...
How severe is CVE-2024-41781?
CVE-2024-41781 has been rated MEDIUM with a CVSS base score of 5.1/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2024-41781?
Check the references section above for vendor advisories and patch information. Affected products include: Ibm Powervm Hypervisor, Ibm Power System E950, Ibm Power System E980, Ibm Power System H922, Ibm Power System H924.