I@7.3 Security Vulnerabilities and Issues — I@7.3 CVE List

Lucene search

IbmI7.3

8 matches found

CVE•added 2025/01/24 6:15 p.m.•70 views

CVE-2024-35122

IBM i 7.2, 7.3, 7.4, and 7.5 is vulnerable to a file level local denial of service caused by an insufficient authority requirement. A local non-privileged user can configure a referential constraint with the privileges of a user socially engineered to access the target file.

2.8CVSS3.8AI score0.00019EPSS

CVE•added 2025/02/24 2:15 a.m.•61 views

CVE-2024-55898

IBM i 7.2, 7.3, 7.4, and 7.5 could allow a user with the capability to compile or restore a program to gain elevated privileges due to an unqualified library call. A malicious actor could cause user-controlled code to run with administrator privilege.

8.5CVSS8.6AI score0.00017EPSS

CVE•added 2025/05/07 2:15 a.m.•56 views

CVE-2025-3218

IBM i 7.2, 7.3, 7.4, 7.5, and 7.6 is vulnerable to authentication and authorization attacks due to incorrect validation processing in IBM i Netserver. A malicious actor could use the weaknesses, in conjunction with brute force authentication attacks or to bypass authority restrictions, to access th...

5.4CVSS7AI score0.00046EPSS

CVE•added 2025/04/18 3:15 p.m.•38 views

CVE-2025-2950

IBM i 7.3, 7.4, 7.5, and 7.5 is vulnerable to a host header injection attack caused by improper neutralization of HTTP header content by IBM Navigator for i. An authenticated user can manipulate the host header in HTTP requests to change domain/IP address which may lead to unexpected behavior.

5.4CVSS5.5AI score0.00038EPSS

CVE•added 2025/05/17 4:15 p.m.•30 views

CVE-2025-33103

IBM i 7.2, 7.3, 7.4, 7.5, and 7.6 product IBM TCP/IP Connectivity Utilities for i contains a privilege escalation vulnerability. A malicious actor with command line access to the host operating system can elevate privileges to gain root access to the host operating system.

8.8CVSS8.9AI score0.00058EPSS

CVE•added 2025/06/25 3:15 a.m.•11 views

CVE-2025-36004

IBM i 7.2, 7.3, 7.4, and 7.5 could allow a user to gain elevated privileges due to an unqualified library call in IBM Facsimile Support for i. A malicious actor could cause user-controlled code to run with administrator privilege.

8.8CVSS7.3AI score0.0005EPSS

CVE•added 2025/06/17 6:15 p.m.•5 views

CVE-2025-33122

IBM i 7.2, 7.3, 7.4, 7.5, and 7.6 could allow a user to gain elevated privileges due to an unqualified library call in IBM Advanced Job Scheduler for i. A malicious actor could cause user-controlled code to run with administrator privilege.

7.5CVSS7.6AI score0.00058EPSS

CVE•added yesterday•0 views

CVE-2025-33109 IBM i privilege escalation

IBM i 7.2, 7.3, 7.4, 7.5, and 7.6 is vulnerable to a privilege escalation caused by an invalid database authority check. A bad actor could execute a database procedure or function without having all required permissions, in addition to causing denial of service for some database actions.

7.5CVSS6.9AI score