Security Bulletin: IBM i is vulnerable to a privilege escalation due to incorrect profile swapping in an OS command [CVE-2025-2947].

IBM i contains a privilege escalation vulnerability due to incorrect swapping in an OS command as described in the vulnerability details section. This bulletin identifies the steps to take to address the vulnerability as described in the remediation/fixes section.

## Vulnerability Details

**CVEID:**CVE-2025-2947
**DESCRIPTION:** IBM i contains a privilege escalation vulnerability due to incorrect profile swapping in an OS command. A malicious actor can use the command to elevate privileges to gain root access to the host operating system.
**CWE:**CWE-278: Insecure Preserved Inherited Permissions
**CVSS Source:** IBM
**CVSS Base score:** 7.2
**CVSS Vector:**(CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H)

## Affected Products and Versions

Affected Product(s)| Version(s)
—|—
IBM i| 7.6

## Remediation/Fixes

The issue can be addressed by applying a PTF to IBM i. IBM i release 7.6 will be fixed.

The IBM i 5770-SS1 PTF number listed below resolves the vulnerability.

IBM i Release| 5770-SS1
PTF Number| PTF Download Link
—|—|—
7.6| SJ04908 | https://www.ibm.com/mysupport/s/fix-information?legacy=SJ04908

https://www.ibm.com/support/fixcentral

_Important note: IBM recommends that all users running unsupported versions of affected products upgrade to supported and fixed version of affected products._

## Workarounds and Mitigations

None

##