Elevated Privilege Vulnerability in IBM Backup, Recovery and Media Services
CVE-2025-33108

8.5HIGH

Key Information:

Vendor: IBM
Status: Backup, Recovery and Media Services
Vendor: CVE Published:; 14 June 2025

What is CVE-2025-33108?

A security vulnerability in IBM Backup, Recovery, and Media Services for versions 7.4 and 7.5 may permit users with permissions to compile or restore programs to exploit unqualified library calls. This could allow unauthorized execution of user-controlled code with component access to the underlying host operating system, posing a risk of unauthorized data access or system manipulation.

References

https://www.ibm.com/support/pages/node/7236663

CVSS V3.1

Score:

8.5

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

Low

User Interaction:

None

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 14, 2025