CVE-2025-33103

Published: May 17, 2025Modified: Jun 4, 2025

8.8

Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Exploitability: 2.8 / Impact: 5.9

Source: NVD

Description

IBM i 7.2, 7.3, 7.4, 7.5, and 7.6 product IBM TCP/IP Connectivity Utilities for i contains a privilege escalation vulnerability. A malicious actor with command line access to the host operating system can elevate privileges to gain root access to the host operating system.

Affected (5)

Products: Ibm: I

Ibm

1 product

Configuration A

5 vulnerable

Vulnerable Software	Affected Versions
Ibm I	Version 7.2
Ibm I	Version 7.3
Ibm I	Version 7.4
Ibm I	Version 7.5
Ibm I	Version 7.6

Related CWEs

CWE-250

Execution with Unnecessary Privileges

The product performs an operation at a privilege level that is higher than the minimum level required, which creates new weaknesses or amplifies the consequences of other weaknesses.

References (1)

https://www.ibm.com/support/pages/node/7233799

Source: psirt@us.ibm.com

Vendor Advisory

Timeline

No history available yet.