- What is the severity of CVE-2025-36056?
- CVE-2025-36056 has been scored as a medium severity vulnerability.
- How to fix CVE-2025-36056?
- To fix CVE-2025-36056: IBM strongly recommends addressing the vulnerability now by visiting https://tape.ibmrcl.enterpriseappointments.com/v2/ or contacting IBM Service at 1-800-IBM-SERV to arrange an upgrade to the latest microcode version followed by the installation of the appropriate VTD_EXEC as needed. Minimum microcode versions are shown below: Machine Type Model Release Fix 3957 VED R5.4 Upgrade to 8.54.2.17 + VTD_EXEC.904 - OR - Upgrade to 8.54.1.27 + VTD_EXEC.904 R6.0 Upgrade to 8.60.0.115 + VTD_EXEC.905 3948 VED R5.4 Upgrade to 8.54.2.17 + VTD_EXEC.904 - OR - Upgrade to 8.54.1.27 + VTD_EXEC.904 R6.0 Upgrade to 8.60.0.115 + VTD_EXEC.905 3948 VEF R6.0 Upgrade to 8.60.0.115 + VTD_EXEC.905 The minimum VTD_EXEC version is shown below: VTD_EXEC Package Version VTD_EXEC.904 v1.27 VTD_EXEC.905 v1.11 Installation Details Concurrent Yes Local Machine State Online/Offline/Service Remote Machine State Online/Offline/Service Time of Installation Anytime Installation Time Required (mins) 60
- Is CVE-2025-36056 being actively exploited in the wild?
- As for now, there are no information to confirm that CVE-2025-36056 is being actively exploited. According to its EPSS score, there is a ~0% probability that this vulnerability will be exploited by malicious actors in the next 30 days.
- What software or system is affected by CVE-2025-36056?
- CVE-2025-36056 affects IBM System Storage Virtualization Engine TS7700, IBM System Storage Virtualization Engine TS7700, IBM System Storage Virtualization Engine TS7700.