1. Home
  2. CVE Database
  3. CVE-2025-36035
MEDIUM · 6.7

CVE-2025-36035

IBM PowerVM Hypervisor FW950.00 through FW950.E0, FW1050.00 through FW1050.50, and FW1060.00 through FW1060.40 could allow a local privileged user to cause a denial of service by issuing a specially c...

Vulnerability Description

IBM PowerVM Hypervisor FW950.00 through FW950.E0, FW1050.00 through FW1050.50, and FW1060.00 through FW1060.40 could allow a local privileged user to cause a denial of service by issuing a specially crafted IBM i hypervisor call that would disclose memory contents or consume excessive memory resources.

CVSS Score

6.7

MEDIUM

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:L/I:N/A:H
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
CHANGED
Confidentiality
LOW
Integrity
NONE
Availability
HIGH

Affected Products

VendorProductVersions
IbmPowervm Hypervisor>= FW950.00, <= FW950.E0
IbmPower System E950 \(9040-Mr9\)-
IbmPower System E980 \(9080-M9S\)-
IbmPower System H922 \(9223-22H\)-
IbmPower System H922 \(9223-22S\)-
IbmPower System H924 \(\(9223-42S\)-
IbmPower System H924 \(9223-42H\)-
IbmPower System L922 \(9008-22L\)-
IbmPower System S914 \(9009-41A\)-
IbmPower System S914 \(9009-41G\)-
IbmPower System S922 \(9009-22A\)-
IbmPower System S922 \(9009-22G\)-
IbmPower System S924 \(9009-42A\)-
IbmPower System S924 \(9009-42G\)-
IbmPower System E1080 \(9080-Hex\)-
IbmPower System E1050 \(9043-Mrx\)-
IbmPower System L1022 \(9786-22H\)-
IbmPower System L1024 \(9786-42H\)-
IbmPower System S1012 \(9028-21B\)-
IbmPower System S1014 \(9105-41B\)-

Related Weaknesses (CWE)

CWE-770

References

FAQ

What is CVE-2025-36035?

CVE-2025-36035 is a vulnerability with a CVSS score of 6.7 (MEDIUM). IBM PowerVM Hypervisor FW950.00 through FW950.E0, FW1050.00 through FW1050.50, and FW1060.00 through FW1060.40 could allow a local privileged user to cause a denial of service by issuing a specially c...

How severe is CVE-2025-36035?

CVE-2025-36035 has been rated MEDIUM with a CVSS base score of 6.7/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2025-36035?

Check the references section above for vendor advisories and patch information. Affected products include: Ibm Powervm Hypervisor, Ibm Power System E950 \(9040-Mr9\), Ibm Power System E980 \(9080-M9S\), Ibm Power System H922 \(9223-22H\), Ibm Power System H922 \(9223-22S\).