IBM - FLRT Fix Level Recommendation Tool

HMC Security CSV file HMC Security JSON file

V10Sec

Product	Abstract	APAR	VRMF	Fixed In	Issued	Updated	Bulletin	Download	Cvss
V10.3.1050.0	Vulnerabilities in linux-firmware (CVE-2022-46329 CVE-2023-20592) affect Power HMC.	MB04474	V10.3.1060.0 SP1 x86	MF71709	'24.12.14	'25.04.14	Bulletin	Download	CVE-2022-46329:8.2 / CVE-2023-20592:4.3
V10.3.1050.0	Vulnerability in restricted bash environment (CVE-2024-56477) affects Power HMC.	MB04474	V10.3.1060.0 SP1 x86	MF71709	'25.02.13	'25.04.14	Bulletin	Download	CVE-2024-56477:6.5
V10.3.1050.0	Vulnerabilities in linux-firmware (CVE-2022-46329 CVE-2023-20592) affect Power HMC.	MB04475	V10.3.1060.0 SP1 ppc	MF71710	'24.12.14	'25.04.14	Bulletin	Download	CVE-2022-46329:8.2 / CVE-2023-20592:4.3
V10.3.1050.0	Vulnerability in restricted bash environment (CVE-2024-56477) affects Power HMC.	MB04475	V10.3.1060.0 SP1 ppc	MF71710	'25.02.13	'25.04.14	Bulletin	Download	CVE-2024-56477:6.5
V10.3.1050.0	Vulnerability in openssl library (CVE-2024-5535) affects Power HMC.	MB04478	V10.3.1060.0 SP1 x86	MF71713	'25.02.18		Bulletin	Download	CVE-2024-5535:3.7
V10.3.1050.0	Vulnerabilities in linux-firmware (CVE-2023-20584 CVE-2023-31315 CVE-2023-31356) affect Power HMC.	MB04478	V10.3.1060.0 SP1 x86	MF71713	'25.02.18	'25.04.14	Bulletin	Download	CVE-2023-20584:6 / CVE-2023-31315:7.5 / CVE-2023-31356:4.4
V10.3.1050.0	Vulnerability in openssl library (CVE-2024-5535) affects Power HMC.	MB04479	V10.3.1060.0 SP1 ppc	MF71714	'25.02.18		Bulletin	Download	CVE-2024-5535:3.7
V10.3.1050.0	Vulnerabilities in linux-firmware (CVE-2023-20584 CVE-2023-31315 CVE-2023-31356) affect Power HMC.	MB04479	V10.3.1060.0 SP1 ppc	MF71714	'25.02.18	'25.04.14	Bulletin	Download	CVE-2023-20584:6 / CVE-2023-31315:7.5 / CVE-2023-31356:4.4
V10.3.1050.0	Vulnerability in Bootstrap (CVE-2024-6531) affects Power HMC.	MB04480	V10.3.1060.0 SP1 x86	MF71715	'25.03.24		Bulletin	Download	CVE-2024-6531:6.4
V10.3.1050.0	Vulnerability in Bootstrap (CVE-2024-6531) affects Power HMC.	MB04481	V10.3.1060.0 SP1 ppc	MF71716	'25.03.24		Bulletin	Download	CVE-2024-6531:6.4
V10.3.1050.0	Vulnerability in libsoup library (CVE-2024-52531) affects Power HMC.	MB04484	V10.3.1060.0 SP1 x86	MF71719	'25.04.21		Bulletin	Download	CVE-2024-52531:6.5
V10.3.1050.0	Vulnerability in HMC affects further privilege escalation (CVE-2025-1951) on Power HMC	MB04484	V10.3.1060.0 SP1 x86	MF71719	'25.04.21	'25.04.24	Bulletin	Download	CVE-2025-1951:8.4
V10.3.1050.0	Incorrect permission of environment variable (CVE-2025-1950) affects Power HMC	MB04484	V10.3.1060.0 SP1 x86	MF71719	'25.04.22	'25.04.24	Bulletin	Download	CVE-2025-1950:9.3
V10.3.1050.0	Vulnerability in Apache Tomcat Server (CVE-2025-24813) affects Power HMC.	MB04484	V10.3.1060.0 SP1 x86	MF71719	'25.04.22		Bulletin	Download	CVE-2025-24813:9.8
V10.3.1050.0	Vulnerability in libsoup library (CVE-2024-52531) affects Power HMC.	MB04485	V10.3.1060.0 SP1 ppc	MF71720	'25.04.21		Bulletin	Download	CVE-2024-52531:6.5
V10.3.1050.0	Vulnerability in HMC affects further privilege escalation (CVE-2025-1951) on Power HMC	MB04485	V10.3.1060.0 SP1 ppc	MF71720	'25.04.21	'25.04.24	Bulletin	Download	CVE-2025-1951:8.4
V10.3.1050.0	Incorrect permission of environment variable (CVE-2025-1950) affects Power HMC	MB04485	V10.3.1060.0 SP1 ppc	MF71720	'25.04.22	'25.04.24	Bulletin	Download	CVE-2025-1950:9.3
V10.3.1050.0	Vulnerability in Apache Tomcat Server (CVE-2025-24813) affects Power HMC.	MB04485	V10.3.1060.0 SP1 ppc	MF71720	'25.04.22		Bulletin	Download	CVE-2025-24813:9.8
V10.3.1050.0	Vulnerability in freetype library (CVE-2025-27363) affects Power HMC	MB04492	V10.3.1060.0 SP2 x86	MF71727	'25.07.07		Bulletin	Download	CVE-2025-27363:8.1
V10.3.1050.0	Vulnerabilities in libxml2 library (CVE-2024-56171 CVE-2025-24928) affect Power HMC	MB04492	V10.3.1060.0 SP2 x86	MF71727	'25.07.07		Bulletin	Download	CVE-2024-56171:7.8 / CVE-2025-24928:7.8
V10.3.1050.0	Vulnerability in expat library (CVE-2024-8176) affects Power HMC	MB04492	V10.3.1060.0 SP2 x86	MF71727	'25.07.07		Bulletin	Download	CVE-2024-8176:7.5
V10.3.1050.0	Vulnerabilities in IBM Semeru SDK (CVE-2025-21587 CVE-2025-30698 CVE-2025-2900) affect Power HMC	MB04492	V10.3.1060.0 SP2 x86	MF71727	'25.07.07		Bulletin	Download	CVE-2025-21587:7.4 / CVE-2025-30698:5.6 / CVE-2025-2900:7.5
V10.3.1050.0	Vulnerabilities in libsoup library (CVE-2025-32050 CVE-2025-32052 CVE-2025-32053 CVE-2025-32906 CVE-2025-32911 CVE-2025-32913 CVE-2025-46420 CVE-2025-46421) affect Power HMC	MB04492	V10.3.1060.0 SP2 x86	MF71727	'25.07.14		Bulletin	Download	CVE-2025-32050:5.9 / CVE-2025-32052:6.5 / CVE-2025-32053:6.5 / CVE-2025-32906:7.5 / CVE-2025-32911:9 / CVE-2025-32913:7.5 / CVE-2025-46420:6.5 / CVE-2025-46421:6.8
V10.3.1050.0	Vulnerability in freetype library (CVE-2025-27363) affects Power HMC	MB04493	V10.3.1060.0 SP2 ppc	MF71728	'25.07.07		Bulletin	Download	CVE-2025-27363:8.1
V10.3.1050.0	Vulnerabilities in libxml2 library (CVE-2024-56171 CVE-2025-24928) affect Power HMC	MB04493	V10.3.1060.0 SP2 ppc	MF71728	'25.07.07		Bulletin	Download	CVE-2024-56171:7.8 / CVE-2025-24928:7.8
V10.3.1050.0	Vulnerability in expat library (CVE-2024-8176) affects Power HMC	MB04493	V10.3.1060.0 SP2 ppc	MF71728	'25.07.07		Bulletin	Download	CVE-2024-8176:7.5
V10.3.1050.0	Vulnerabilities in IBM Semeru SDK (CVE-2025-21587 CVE-2025-30698 CVE-2025-2900) affect Power HMC	MB04493	V10.3.1060.0 SP2 ppc	MF71728	'25.07.07		Bulletin	Download	CVE-2025-21587:7.4 / CVE-2025-30698:5.6 / CVE-2025-2900:7.5
V10.3.1050.0	Vulnerabilities in libsoup library (CVE-2025-32050 CVE-2025-32052 CVE-2025-32053 CVE-2025-32906 CVE-2025-32911 CVE-2025-32913 CVE-2025-46420 CVE-2025-46421) affect Power HMC	MB04493	V10.3.1060.0 SP2 ppc	MF71728	'25.07.14		Bulletin	Download	CVE-2025-32050:5.9 / CVE-2025-32052:6.5 / CVE-2025-32053:6.5 / CVE-2025-32906:7.5 / CVE-2025-32911:9 / CVE-2025-32913:7.5 / CVE-2025-46420:6.5 / CVE-2025-46421:6.8
V10.3.1050.0	Vulnerabilities in libsoup library (CVE-2025-2784 CVE-2025-4948 CVE-2025-32049 CVE-2025-32914) affect Power HMC.	MB04499	V10.3.1060.0 SP2 x86	MF71734	'25.09.09		Bulletin	Download	CVE-2025-2784:6.5 / CVE-2025-4948:7.5 / CVE-2025-32049:7.5 / CVE-2025-32914:7.4
V10.3.1050.0	Vulnerability in libxslt library (CVE-2023-40403) affects Power HMC	MB04499	V10.3.1060.0 SP2 x86	MF71734	'25.09.09		Bulletin	Download	CVE-2023-40403:6.5
V10.3.1050.0	Vulnerability in libxml2 library (CVE-2025-32414) affects Power HMC	MB04499	V10.3.1060.0 SP2 x86	MF71734	'25.09.09		Bulletin	Download	CVE-2025-32414:7.5
V10.3.1050.0	Vulnerability in pam library (CVE-2025-6020) affects Power HMC	MB04499	V10.3.1060.0 SP2 x86	MF71734	'25.09.09		Bulletin	Download	CVE-2025-6020:7.8
V10.3.1050.0	Vulnerability in sudo library (CVE-2025-32462) affects Power HMC	MB04499	V10.3.1060.0 SP2 x86	MF71734	'25.09.09		Bulletin	Download	CVE-2025-32462:8.8
V10.3.1050.0	Vulnerability in HMC affects improper neutralization of input during web page generation ('Cross-site Scripting') (CVE-2025-36125) on Power HMC	MB04499	V10.3.1060.0 SP2 x86	MF71734	'25.09.09		Bulletin	Download	CVE-2025-36125:6.4
V10.3.1050.0	Vulnerabilities in glib2 library (CVE-2024-52533 CVE-2025-4373) affect Power HMC	MB04499	V10.3.1060.0 SP2 x86	MF71734	'25.09.09		Bulletin	Download	CVE-2024-52533:9.8 / CVE-2025-4373:4.8
V10.3.1050.0	Vulnerabilities in libxml2 library (CVE-2025-6021 CVE-2025-49794 CVE-2025-49796) affect Power HMC	MB04499	V10.3.1060.0 SP2 x86	MF71734	'25.09.09		Bulletin	Download	CVE-2025-6021:7.5 / CVE-2025-49794:9.1 / CVE-2025-49796:9.1
V10.3.1050.0	Vulnerabilities in libsoup library (CVE-2025-2784 CVE-2025-4948 CVE-2025-32049 CVE-2025-32914) affect Power HMC.	MB04500	V10.3.1060.0 SP2 ppc	MF71735	'25.09.09		Bulletin	Download	CVE-2025-2784:6.5 / CVE-2025-4948:7.5 / CVE-2025-32049:7.5 / CVE-2025-32914:7.4
V10.3.1050.0	Vulnerability in libxslt library (CVE-2023-40403) affects Power HMC	MB04500	V10.3.1060.0 SP2 ppc	MF71735	'25.09.09		Bulletin	Download	CVE-2023-40403:6.5
V10.3.1050.0	Vulnerability in libxml2 library (CVE-2025-32414) affects Power HMC	MB04500	V10.3.1060.0 SP2 ppc	MF71735	'25.09.09		Bulletin	Download	CVE-2025-32414:7.5
V10.3.1050.0	Vulnerability in pam library (CVE-2025-6020) affects Power HMC	MB04500	V10.3.1060.0 SP2 ppc	MF71735	'25.09.09		Bulletin	Download	CVE-2025-6020:7.8
V10.3.1050.0	Vulnerability in sudo library (CVE-2025-32462) affects Power HMC	MB04500	V10.3.1060.0 SP2 ppc	MF71735	'25.09.09		Bulletin	Download	CVE-2025-32462:8.8
V10.3.1050.0	Vulnerability in HMC affects improper neutralization of input during web page generation ('Cross-site Scripting') (CVE-2025-36125) on Power HMC	MB04500	V10.3.1060.0 SP2 ppc	MF71735	'25.09.09		Bulletin	Download	CVE-2025-36125:6.4
V10.3.1050.0	Vulnerabilities in glib2 library (CVE-2024-52533 CVE-2025-4373) affect Power HMC	MB04500	V10.3.1060.0 SP2 ppc	MF71735	'25.09.09		Bulletin	Download	CVE-2024-52533:9.8 / CVE-2025-4373:4.8
V10.3.1050.0	Vulnerabilities in libxml2 library (CVE-2025-6021 CVE-2025-49794 CVE-2025-49796) affect Power HMC	MB04500	V10.3.1060.0 SP2 ppc	MF71735	'25.09.09		Bulletin	Download	CVE-2025-6021:7.5 / CVE-2025-49794:9.1 / CVE-2025-49796:9.1
V10.2.1030.0	Vulnerabilities in linux-firmware (CVE-2022-46329 CVE-2023-20592) affect Power HMC.	MB04472	V10.2.1040.0 SP3 x86	MF71707	'24.12.14	'25.04.14	Bulletin	Download	CVE-2022-46329:8.2 / CVE-2023-20592:4.3
V10.2.1030.0	Vulnerabilities in linux-firmware (CVE-2022-46329 CVE-2023-20592) affect Power HMC.	MB04473	V10.2.1040.0 SP3 ppc	MF71708	'24.12.14	'25.04.14	Bulletin	Download	CVE-2022-46329:8.2 / CVE-2023-20592:4.3
V10.2.1030.0	Vulnerability in openssl library (CVE-2024-5535) affects Power HMC.	MB04476	V10.2.1040.0 SP3 x86	MF71711	'25.02.18		Bulletin	Download	CVE-2024-5535:3.7
V10.2.1030.0	Vulnerabilities in linux-firmware (CVE-2023-20584 CVE-2023-31315 CVE-2023-31356) affect Power HMC.	MB04476	V10.2.1040.0 SP3 x86	MF71711	'25.02.18	'25.04.14	Bulletin	Download	CVE-2023-20584:6 / CVE-2023-31315:7.5 / CVE-2023-31356:4.4
V10.2.1030.0	Vulnerability in openssl library (CVE-2024-5535) affects Power HMC.	MB04477	V10.2.1040.0 SP3 ppc	MF71712	'25.02.18		Bulletin	Download	CVE-2024-5535:3.7
V10.2.1030.0	Vulnerabilities in linux-firmware (CVE-2023-20584 CVE-2023-31315 CVE-2023-31356) affect Power HMC.	MB04477	V10.2.1040.0 SP3 ppc	MF71712	'25.02.18	'25.04.14	Bulletin	Download	CVE-2023-20584:6 / CVE-2023-31315:7.5 / CVE-2023-31356:4.4
V10.2.1030.0	Vulnerability in libsoup library (CVE-2024-52531) affects Power HMC.	MB04482	V10.2.1040.0 SP3 x86	MF71717	'25.04.21		Bulletin	Download	CVE-2024-52531:6.5
V10.2.1030.0	Vulnerability in HMC affects further privilege escalation (CVE-2025-1951) on Power HMC	MB04482	V10.2.1040.0 SP3 x86	MF71717	'25.04.21	'25.04.24	Bulletin	Download	CVE-2025-1951:8.4
V10.2.1030.0	Incorrect permission of environment variable (CVE-2025-1950) affects Power HMC	MB04482	V10.2.1040.0 SP3 x86	MF71717	'25.04.22	'25.04.24	Bulletin	Download	CVE-2025-1950:9.3
V10.2.1030.0	Vulnerability in Apache Tomcat Server (CVE-2025-24813) affects Power HMC.	MB04482	V10.2.1040.0 SP3 x86	MF71717	'25.04.22		Bulletin	Download	CVE-2025-24813:9.8
V10.2.1030.0	Vulnerability in libsoup library (CVE-2024-52531) affects Power HMC.	MB04483	V10.2.1040.0 SP3 ppc	MF71718	'25.04.21		Bulletin	Download	CVE-2024-52531:6.5
V10.2.1030.0	Vulnerability in HMC affects further privilege escalation (CVE-2025-1951) on Power HMC	MB04483	V10.2.1040.0 SP3 ppc	MF71718	'25.04.21	'25.04.24	Bulletin	Download	CVE-2025-1951:8.4
V10.2.1030.0	Incorrect permission of environment variable (CVE-2025-1950) affects Power HMC	MB04483	V10.2.1040.0 SP3 ppc	MF71718	'25.04.22	'25.04.24	Bulletin	Download	CVE-2025-1950:9.3
V10.2.1030.0	Vulnerability in Apache Tomcat Server (CVE-2025-24813) affects Power HMC.	MB04483	V10.2.1040.0 SP3 ppc	MF71718	'25.04.22		Bulletin	Download	CVE-2025-24813:9.8
V10.2.1030.0	Vulnerability in freetype library (CVE-2025-27363) affects Power HMC	MB04488	V10.2.1040.0 SP3 x86	MF71723	'25.07.07		Bulletin	Download	CVE-2025-27363:8.1
V10.2.1030.0	Vulnerability in freetype library (CVE-2025-27363) affects Power HMC	MB04489	V10.2.1040.0 SP3 ppc	MF71724	'25.07.07		Bulletin	Download	CVE-2025-27363:8.1

Fix Level Recommendation Tool

HMC Security APAR information Last modified: 2025.09.11

V10Sec

Contact

Suggestions and Bugs