CVE-2025-36035 - Vulnerability Details

IBM PowerVM Hypervisor FW950.00 through FW950.E0, FW1050.00 through FW1050.50, and FW1060.00 through FW1060.40 could allow a local privileged user to cause a denial of service by issuing a specially crafted IBM i hypervisor call that would disclose memory contents or consume excessive memory resources.

No CVSS v4.0

Attack Vector Local

Attack Complexity Low

Privileges Required High

Scope Changed

Confidentiality Impact Low

Integrity Impact None

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Exploitation none

Automatable no

Technical Impact partial

Vendors	Products
Ibm	Power9 System Firmware Power System E1050 \(9043-mrx\) Power System E1080 \(9080-hex\) Power System E950 \(9040-mr9\) Power System E980 \(9080-m9s\) Power System H922 \(9223-22h\) Power System H922 \(9223-22s\) Power System H924 \(9223-42h\) Power System H924 \(\(9223-42s\) Power System L1022 \(9786-22h\) Power System L1024 \(9786-42h\) Power System L922 \(9008-22l\) Power System S1012 \(9028-21b\) Power System S1014 \(9105-41b\) Power System S1022 \(9105-22a\) Power System S1022s \(9105-22b\) Power System S1024 \(9105-42a\) Power System S914 \(9009-41a\) Power System S914 \(9009-41g\) Power System S922 \(9009-22a\) Power System S922 \(9009-22g\) Power System S924 \(9009-42a\) Power System S924 \(9009-42g\) Powervm Hypervisor

Configuration 1 [-]

AND

cpe:2.3:o:ibm:powervm_hypervisor:*:*:*:*:*:*:*:*

OR	cpe:2.3:h:ibm:power_system_e950_\(9040-mr9\):-:::::::*
	cpe:2.3:h:ibm:power_system_e980_\(9080-m9s\):-:::::::*
	cpe:2.3:h:ibm:power_system_h922_\(9223-22h\):-:::::::*
	cpe:2.3:h:ibm:power_system_h922_\(9223-22s\):-:::::::*
	cpe:2.3:h:ibm:power_system_h924_\(\(9223-42s\):-:::::::*
	cpe:2.3:h:ibm:power_system_h924_\(9223-42h\):-:::::::*
	cpe:2.3:h:ibm:power_system_l922_\(9008-22l\):-:::::::*
	cpe:2.3:h:ibm:power_system_s914_\(9009-41a\):-:::::::*
	cpe:2.3:h:ibm:power_system_s914_\(9009-41g\):-:::::::*
	cpe:2.3:h:ibm:power_system_s922_\(9009-22a\):-:::::::*
	cpe:2.3:h:ibm:power_system_s922_\(9009-22g\):-:::::::*
	cpe:2.3:h:ibm:power_system_s924_\(9009-42a\):-:::::::*
	cpe:2.3:h:ibm:power_system_s924_\(9009-42g\):-:::::::*

Configuration 2 [-]

AND

OR	cpe:2.3:o:ibm:powervm_hypervisor::::::::
	cpe:2.3:o:ibm:powervm_hypervisor::::::::

cpe:2.3:h:ibm:power_system_e1080_\(9080-hex\):-:*:*:*:*:*:*:*

Configuration 3 [-]

AND

OR	cpe:2.3:o:ibm:powervm_hypervisor::::::::
	cpe:2.3:o:ibm:powervm_hypervisor::::::::

OR	cpe:2.3:h:ibm:power_system_e1050_\(9043-mrx\):-:::::::*
	cpe:2.3:h:ibm:power_system_l1022_\(9786-22h\):-:::::::*
	cpe:2.3:h:ibm:power_system_l1024_\(9786-42h\):-:::::::*
	cpe:2.3:h:ibm:power_system_s1012_\(9028-21b\):-:::::::*
	cpe:2.3:h:ibm:power_system_s1014_\(9105-41b\):-:::::::*
	cpe:2.3:h:ibm:power_system_s1022_\(9105-22a\):-:::::::*
	cpe:2.3:h:ibm:power_system_s1022s_\(9105-22b\):-:::::::*
	cpe:2.3:h:ibm:power_system_s1024_\(9105-42a\):-:::::::*

No data.

References

Link	Providers
https://www.ibm.com/support/pages/node/7244813

History

Fri, 19 Dec 2025 13:30:00 +0000

Type	Values Removed	Values Added
First Time appeared		Ibm power System E1050 \(9043-mrx\) Ibm power System E1080 \(9080-hex\) Ibm power System E950 \(9040-mr9\) Ibm power System E980 \(9080-m9s\) Ibm power System H922 \(9223-22h\) Ibm power System H922 \(9223-22s\) Ibm power System H924 \(9223-42h\) Ibm power System H924 \(\(9223-42s\) Ibm power System L1022 \(9786-22h\) Ibm power System L1024 \(9786-42h\) Ibm power System L922 \(9008-22l\) Ibm power System S1012 \(9028-21b\) Ibm power System S1014 \(9105-41b\) Ibm power System S1022 \(9105-22a\) Ibm power System S1022s \(9105-22b\) Ibm power System S1024 \(9105-42a\) Ibm power System S914 \(9009-41a\) Ibm power System S914 \(9009-41g\) Ibm power System S922 \(9009-22a\) Ibm power System S922 \(9009-22g\) Ibm power System S924 \(9009-42a\) Ibm power System S924 \(9009-42g\) Ibm powervm Hypervisor
CPEs		cpe:2.3:h:ibm:power_system_e1050_\(9043-mrx\):-:::::::* cpe:2.3:h:ibm:power_system_e1080_\(9080-hex\):-:::::::* cpe:2.3:h:ibm:power_system_e950_\(9040-mr9\):-:::::::* cpe:2.3:h:ibm:power_system_e980_\(9080-m9s\):-:::::::* cpe:2.3:h:ibm:power_system_h922_\(9223-22h\):-:::::::* cpe:2.3:h:ibm:power_system_h922_\(9223-22s\):-:::::::* cpe:2.3:h:ibm:power_system_h924_\(9223-42h\):-:::::::* cpe:2.3:h:ibm:power_system_h924_\(\(9223-42s\):-:::::::* cpe:2.3:h:ibm:power_system_l1022_\(9786-22h\):-:::::::* cpe:2.3:h:ibm:power_system_l1024_\(9786-42h\):-:::::::* cpe:2.3:h:ibm:power_system_l922_\(9008-22l\):-:::::::* cpe:2.3:h:ibm:power_system_s1012_\(9028-21b\):-:::::::* cpe:2.3:h:ibm:power_system_s1014_\(9105-41b\):-:::::::* cpe:2.3:h:ibm:power_system_s1022_\(9105-22a\):-:::::::* cpe:2.3:h:ibm:power_system_s1022s_\(9105-22b\):-:::::::* cpe:2.3:h:ibm:power_system_s1024_\(9105-42a\):-:::::::* cpe:2.3:h:ibm:power_system_s914_\(9009-41a\):-:::::::* cpe:2.3:h:ibm:power_system_s914_\(9009-41g\):-:::::::* cpe:2.3:h:ibm:power_system_s922_\(9009-22a\):-:::::::* cpe:2.3:h:ibm:power_system_s922_\(9009-22g\):-:::::::* cpe:2.3:h:ibm:power_system_s924_\(9009-42a\):-:::::::* cpe:2.3:h:ibm:power_system_s924_\(9009-42g\):-:::::::* cpe:2.3:o:ibm:powervm_hypervisor::::::::
Vendors & Products		Ibm power System E1050 \(9043-mrx\) Ibm power System E1080 \(9080-hex\) Ibm power System E950 \(9040-mr9\) Ibm power System E980 \(9080-m9s\) Ibm power System H922 \(9223-22h\) Ibm power System H922 \(9223-22s\) Ibm power System H924 \(9223-42h\) Ibm power System H924 \(\(9223-42s\) Ibm power System L1022 \(9786-22h\) Ibm power System L1024 \(9786-42h\) Ibm power System L922 \(9008-22l\) Ibm power System S1012 \(9028-21b\) Ibm power System S1014 \(9105-41b\) Ibm power System S1022 \(9105-22a\) Ibm power System S1022s \(9105-22b\) Ibm power System S1024 \(9105-42a\) Ibm power System S914 \(9009-41a\) Ibm power System S914 \(9009-41g\) Ibm power System S922 \(9009-22a\) Ibm power System S922 \(9009-22g\) Ibm power System S924 \(9009-42a\) Ibm power System S924 \(9009-42g\) Ibm powervm Hypervisor

Mon, 15 Sep 2025 16:15:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

Sun, 14 Sep 2025 13:00:00 +0000

Type	Values Removed	Values Added
Description		IBM PowerVM Hypervisor FW950.00 through FW950.E0, FW1050.00 through FW1050.50, and FW1060.00 through FW1060.40 could allow a local privileged user to cause a denial of service by issuing a specially crafted IBM i hypervisor call that would disclose memory contents or consume excessive memory resources.
Title		IBM PowerVM Hypervisor denial of service
First Time appeared		Ibm Ibm power9 System Firmware
Weaknesses		CWE-770
CPEs		cpe:2.3:o:ibm:power9_system_firmware:fw1050.00:::::::* cpe:2.3:o:ibm:power9_system_firmware:fw1050.50:::::::* cpe:2.3:o:ibm:power9_system_firmware:fw1060.00:::::::* cpe:2.3:o:ibm:power9_system_firmware:fw1060.40:::::::* cpe:2.3:o:ibm:power9_system_firmware:fw950.00:::::::* cpe:2.3:o:ibm:power9_system_firmware:fw950.E0:::::::*
Vendors & Products		Ibm Ibm power9 System Firmware
References		https://www.ibm.com/support/pages/node/7244813
Metrics		cvssV3_1 `{'score': 6.7, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:L/I:N/A:H'}`

MITRE

Status: PUBLISHED

Assigner: ibm

Published: 2025-09-14T12:52:48.871Z

Updated: 2025-09-15T15:59:00.889Z

Reserved: 2025-04-15T21:16:09.684Z

Link: CVE-2025-36035

Vulnrichment

Updated: 2025-09-15T15:58:55.264Z

NVD

Status : Analyzed

Published: 2025-09-14T13:15:32.450

Modified: 2025-12-19T13:29:49.780

Link: CVE-2025-36035

Redhat

No data.

Metrics

Attack Vector Local

Attack Complexity Low

Privileges Required High

Scope Changed

Confidentiality Impact Low

Integrity Impact None

Availability Impact High

User Interaction None

Exploitation none

Automatable no

Technical Impact partial

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object