Rewterz Threat Advisory – Multiple IBM PowerVM Hypervisor Vulnerabilities

December 13, 2021

Severity

Medium

Analysis Summary

CVE-2021-38937

IBM PowerVM Hypervisor FW940, FW950, and FW1010 could allow an authenticated user to cause the system to crash using a specially crafted IBMi Hypervisor call.

CVE-2021-38917

IBM PowerVM Hypervisor FW860, FW940, and FW950 could allow an attacker that gains service access to the FSP can read and write arbitrary host system memory through a series of carefully crafted service procedures

Impact

Denial of Service
Security Bypass

Affected Vendors

IBM

Affected Products

IBM PowerVM Hypervisor FW940
IBM PowerVM Hypervisor FW950
IBM PowerVM Hypervisor FW1010

Remediation

Refer to IBM Security Advisory for patch, upgrade or suggested workaround information.

CVE-2021-38937

https://www.ibm.com/support/pages/node/6525014

CVE-2021-38917

https://www.ibm.com/support/pages/node/6525010

Platform

Managed Security Services

Managed Penetration Testing

Assess

Transform

Train

Respond

Resources

EncryptHub Leverages Windows Zero-Day to Deploy Rhadamanthys and StealC Malware – Active IOCs

Albabat Ransomware Uses GitHub for Operations – Active IOCs

Lumma Stealer Malware aka LummaC – Active IOCs

Threat Insights

About Us

Our Leadership

CSR

Connect with Us