CVE-2025-1951

Published: Apr 22, 2025Modified: Aug 12, 2025

6.7

Vector

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Exploitability: 0.8 / Impact: 5.9

Source: NVD

Description

IBM Hardware Management Console - Power Systems V10.2.1030.0 and V10.3.1050.0 could allow a local user to execute commands as a privileged user due to execution of commands with unnecessary privileges.

Affected (2)

Products: Ibm: Hardware Management Console

Ibm

1 product

Hardware Management Console

Configuration A

2 vulnerable

Vulnerable Software	Affected Versions
Ibm Hardware Management Console	Version 10.2.1030.0
Ibm Hardware Management Console	Version 10.3.1050.0

Related CWEs

CWE-250

Execution with Unnecessary Privileges

The product performs an operation at a privilege level that is higher than the minimum level required, which creates new weaknesses or amplifies the consequences of other weaknesses.

References (1)

https://www.ibm.com/support/pages/node/7231389

Source: psirt@us.ibm.com

Vendor Advisory

Timeline

No history available yet.