DS8900, TS7770, and ESS 5000 are not exposed to the vulnerability in PowerVM on Power9 and Power10 systems (CVE-2023-30438)
May 17, 2023
DS8900, TS7770, and ESS 5000 only use Power9 servers and are not vulnerable to an internally discovered vulnerability in PowerVM on Power9.
Why are DS8900 and TS7770 not vulnerable?
- The DS8900 and TS7770 are closed systems, and additionally do not utilize multiple logical partitions per physical server, and therefore potential data leakage or the execution of arbitrary code in other logical partitions are not possible.
Why is ESS 5000 not vulnerable?
- ESS 5000 does not run PowerVM software in the appliance and therefore cannot utilize multiple logical partitions.
References:
- Security Bulletins for IBM Products
- IBM X-Force Exchange