๐Ÿ” CVE Alert

CVE-2026-14971

LOW 3.9

This PowerVM Novalink update is being released to address

CVSS Score
3.9
EPSS Score
0.0%
EPSS Percentile
0th

IBM PowerVM Novalink 2.2.02.2.12.2.1.1, and 2.3.02.3.0.12.3.12.3.2 IBM NovaLink APIs misconfiguration may increase attack surface and enable unintended or unauthorized operations under non-default conditions.

CWE CWE-16
Vendor ibm
Product powervm novalink
Published Jul 17, 2026
Stay Ahead of the Next One

Get instant alerts for ibm powervm novalink

Be the first to know when new low vulnerabilities affecting ibm powervm novalink are published โ€” delivered to Slack, Telegram or Discord.

Get Free Alerts โ†’ Free ยท No credit card ยท 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:L/I:L/A:L
Attack Vector
Local
Attack Complexity
High
Privileges Required
High
User Interaction
None
Scope
Unchanged
Confidentiality
Low
Integrity
Low
Availability
Low

Affected Versions

IBM / PowerVM Novalink
2.2.02.2.12.2.1.1 2.3.02.3.0.12.3.12.3.2

References

NVD โ†— CVE.org โ†— EPSS Data โ†—
ibm.com: https://www.ibm.com/support/pages/node/7280225