Root Access Vulnerability in IBM Power Hardware Management Console
CVE-2016-0230

6.8MEDIUM

Key Information:

Vendor

IBM
Status
Hardware Management Console
Vendor
CVE Published:
7 July 2016

What is CVE-2016-0230?

The IBM Power Hardware Management Console (HMC) is impacted by a vulnerability that enables physical attackers to gain root access through unspecified means. This security issue affects several versions of the HMC, which could lead to unauthorized command execution and control over system settings. It's crucial for organizations using HMC to implement necessary security practices and upgrades to mitigate this risk. Regular monitoring and access restrictions should be enforced to safeguard sensitive environments.

References

http://www-01.ibm.com/support/docview.wss?uid=swg1MB04021
vendor-advisoryx_refsource_AIXAPAR
http://www-01.ibm.com/support/docview.wss?uid=nas8N1021387
x_refsource_CONFIRM
https://delivery04.dhe.ibm.com/sar/CMA/HMA/069vc/2/MH0163...
x_refsource_CONFIRM

CVSS V3.1

Score:
6.8
Severity:
MEDIUM
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Physical
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.