CNNVD-202509-1196 Information
CNNVD ID
CNNVD-202509-1196
Related CVE
- CNNVD Published: 2025-09-09
Description (Chinese)
IBM Hardware Management Console - Power是美国国际商业机器(IBM)公司的一款用于配置和控制IBM Power Systems服务器的硬件设备。 IBM Hardware Management Console - Power 10.3.1050.0版本和11.1.1110.0版本存在跨站脚本漏洞,该漏洞源于存储型跨站脚本,可能导致凭据泄露。
Description (English)
IBM Hardware Management Consortium - Power is a hardware unit of the United States International Business Machine (IBM) for the configuration and control of IBM Power Systems servers. Versions IBM Hardware Management Consortium - Power 10.3.10.105.0.0 and 11.1.1111.0.0 have cross-site script loopholes, which originate from storage-type cross-site scripts and may lead to the disclosure of evidence.
Hazard Level
High
Vulnerability Type
跨站脚本
Affected Vendor
国际商业机器
Published
2025-09-09
Last Modified
2026-02-24
References
https://www.ibm.com/support/pages/node/7244336 https://access.redhat.com/security/cve/cve-2025-36125
Patch
https://www.ibm.com/support/pages/node/7244336
Share on: