CVE-2025-33108

Name of the Vulnerable Software and Affected Versions IBM Backup, Recovery and Media Services for i versions 7.4 through 7.5

Description The issue allows a user with the capability to compile or restore a program to gain elevated privileges due to a library unqualified call made by a BRMS program. A malicious actor could cause user-controlled code to run with component access to the host operating system.

Recommendations For versions 7.4 and 7.5, consider restricting the capability to compile or restore programs to trusted users until a patch is available. As a temporary workaround, review and limit access to the BRMS program to minimize the risk of exploitation.