Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2025-33109

IBM i 7.2, 7.3, 7.4, 7.5, and 7.6 is vulnerable to a privilege escalation caused by an invalid database authority check. A bad actor could execute a database procedure or function without having all required permissions, in addition to causing denial of service for some database actions.

Published

2025-07-24T15:15:25.927

Last Modified

2025-08-11T18:57:22.260

Status

Analyzed

Source

[email protected]

Severity

CVSSv3.1: 7.5 (HIGH)

Weaknesses

Type: Secondary
CWE-250

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Operating System	ibm	i	7.2	Yes
Operating System	ibm	i	7.3	Yes
Operating System	ibm	i	7.4	Yes
Operating System	ibm	i	7.5	Yes
Operating System	ibm	i	7.6	Yes

References

https://www.ibm.com/support/pages/node/7240410 Vendor Advisory ([email protected])