CVE-2025-36004
- EPSS 0.07%
- Veröffentlicht 25.06.2025 02:32:40
- Zuletzt bearbeitet 03.07.2025 20:53:35
IBM i 7.2, 7.3, 7.4, and 7.5 could allow a user to gain elevated privileges due to an unqualified library call in IBM Facsimile Support for i. A malicious actor could cause user-controlled code to run with administrator privilege.
CVE-2025-33122
- EPSS 0.07%
- Veröffentlicht 17.06.2025 17:13:00
- Zuletzt bearbeitet 03.07.2025 20:53:32
IBM i 7.2, 7.3, 7.4, 7.5, and 7.6 could allow a user to gain elevated privileges due to an unqualified library call in IBM Advanced Job Scheduler for i. A malicious actor could cause user-controlled code to run with administrator privilege.
CVE-2025-2947
- EPSS 0.04%
- Veröffentlicht 17.04.2025 17:10:52
- Zuletzt bearbeitet 17.07.2025 18:37:40
IBM i 7.6 contains a privilege escalation vulnerability due to incorrect profile swapping in an OS command. A malicious actor can use the command to elevate privileges to gain root access to the host operating system.
CVE-2024-55898
- EPSS 0.03%
- Veröffentlicht 24.02.2025 02:15:31
- Zuletzt bearbeitet 03.07.2025 20:52:55
IBM i 7.2, 7.3, 7.4, and 7.5 could allow a user with the capability to compile or restore a program to gain elevated privileges due to an unqualified library call. A malicious actor could cause user-controlled code to run with administrator privilege...
CVE-2024-35122
- EPSS 0.02%
- Veröffentlicht 24.01.2025 18:15:31
- Zuletzt bearbeitet 29.09.2025 16:15:33
IBM i 7.2, 7.3, 7.4, and 7.5 is vulnerable to a file level local denial of service caused by an insufficient authority requirement. A local non-privileged user can configure a referential constraint with the privileges of a user socially engineered t...