Privilege Escalation Vulnerability in IBM TCP/IP Connectivity Utilities for i
CVE-2025-33103

8.5HIGH

Key Information:

Vendor: IBM
Status: I
Vendor: CVE Published:; 17 May 2025

What is CVE-2025-33103?

A vulnerability exists in IBM TCP/IP Connectivity Utilities for i across multiple versions of IBM i. This flaw allows an unauthorized actor with command line access to exploit the system, enabling them to escalate their privileges and potentially gain root access to the host operating system. This can lead to serious security breaches, making it crucial for users to implement necessary security measures.

Affected Version(s)

i 7.2, 7.3, 7.4, 7.5, 7.6

References

https://www.ibm.com/support/pages/node/7233799

vendor-advisory

CVSS V3.1

Score:

8.5

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

Low

User Interaction:

None

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 17, 2025
Vulnerability Reserved
Apr 15, 2025