Misconfiguration in IBM PowerVM Novalink Increases Attack Surface
CVE-2026-14971
3.9LOW
What is CVE-2026-14971?
A misconfiguration in the IBM PowerVM Novalink APIs can create a broader attack surface, allowing unauthorized or unintended operations under non-default conditions. This vulnerability primarily affects specific versions of PowerVM Novalink, making it critical for users to assess their configurations and implement necessary security measures to mitigate potential exploits.
Affected Version(s)
PowerVM Novalink 2.2.02.2.12.2.1.1
PowerVM Novalink 2.3.02.3.0.12.3.12.3.2