Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2025-33108

IBM Backup, Recovery and Media Services for i 7.4 and 7.5 could allow a user with the capability to compile or restore a program to gain elevated privileges due to a library unqualified call made by a BRMS program. A malicious actor could cause user-controlled code to run with component access to the host operating system.

Published

2025-06-14T01:15:19.800

Last Modified

2025-08-20T17:16:50.317

Status

Analyzed

Source

[email protected]

Severity

CVSSv3.1: 8.5 (HIGH)

Weaknesses

Type: Secondary
CWE-250
Type: Primary
NVD-CWE-noinfo

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Operating System	ibm	i	7.4	Yes
Operating System	ibm	i	7.5	Yes

References

https://www.ibm.com/support/pages/node/7236663 Vendor Advisory ([email protected])