CVE Details
Basic Information
| Title | IBM i privilege escalation |
|---|---|
| Type | cve |
| Published | 2025-07-24T15:06:49.888Z |
| Modified | 2025-07-24T15:06:49.888Z |
Product Information
| Vendor | IBM |
|---|---|
| Product | i |
| Version | 7.2, 7.3, 7.4, 7.5, 7.6 |
CVSS Information
| Base Score | 7.5 (HIGH) |
|---|---|
| Attack Vector | CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H |
Affected Products
- IBM i 7.2, 7.3, 7.4, 7.5, 7.6
Additional Information
| CWE List | CWE-250 |
|---|---|
| Source | ibm |
Description
IBM i 7.2, 7.3, 7.4, 7.5, and 7.6 is vulnerable to a privilege escalation caused by an invalid database authority check. A bad actor could execute a database procedure or function without having all required permissions, in addition to causing denial of service for some database actions.