cve/2021/CVE-2021-38917.md

### [CVE-2021-38917](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-38917)
![](https://img.shields.io/static/v1?label=Product&message=PowerVM%20Hypervisor&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=FW860%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Version&message=FW940%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Version&message=FW950%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=Bypass%20Security&color=brightgreen)

### Description

IBM PowerVM Hypervisor FW860, FW940, and FW950 could allow an attacker that gains service access to the FSP can read and write arbitrary host system memory through a series of carefully crafted service procedures. IBM X-Force ID: 210018.

### POC

#### Reference
- https://www.ibm.com/support/pages/node/6525010

#### Github
No PoCs found on GitHub currently.