Severity
High
Analysis Summary
CVE-2025-33108
IBM Backup, Recovery and Media Services for i could allow a user with the capability to compile or restore a program to gain elevated privileges due to a library unqualified call made by a BRMS program. A malicious actor could cause user-controlled code to run with component access to the host operating system.
Impact
- Privilege Escalation
Indicators of Compromise
CVE
CVE-2025-33108
Affected Vendors
- IBM
Affected Products
- IBM i - 7.4
- IBM i - 7.5
Remediation
Refer to the IBM Security Advisory for patch, upgrade, or suggested workaround information.