PowerVM FW1050.00-1050.30 / FW1060.00-1060.20: User Can Induce Data Loss via gzip HW
CVE-2025-0986 Published on March 28, 2025
IBM PowerVM Hypervisor data manipulation
IBM PowerVM Hypervisor FW1050.00 through FW1050.30 and FW1060.00 through FW1060.20 could allow a local user, under certain Linux processor combability mode configurations, to cause undetected data loss or errors when performing gzip compression using HW acceleration.
Vulnerability Analysis
CVE-2025-0986 is exploitable with local system access, and does not require authorization privileges or user interaction. This vulnerability is consided to have a high level of attack complexity. The potential impact of an exploit of this vulnerability is considered to have no impact on confidentiality, with no impact on integrity and availability.
Weakness Type
What is a Data Amplification Vulnerability?
The software does not handle or incorrectly handles a compressed input with a very high compression ratio that produces a large output. An example of data amplification is a "decompression bomb," a small ZIP file that can produce a large amount of data when it is decompressed.
CVE-2025-0986 has been classified to as a Data Amplification vulnerability or weakness.
Products Associated with CVE-2025-0986
Want to know whenever a new CVE is published for IBM Powervm Hypervisor? stack.watch will email you.
Affected Versions
IBM PowerVM Hypervisor:- Version FW1050.00, <= FW1050.30 is affected.
- Version FW1060.00, <= FW1060.20 is affected.
Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.