Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
CVE Vulnerability Details :
CVE-2026-7870
PUBLISHED
More InfoOfficial Page
Assigner-ibm
Assigner Org ID-9a959283-ebb5-44b6-b705-dcc2bbced522
View Known Exploited Vulnerability (KEV) details
Published At-11 Jun, 2026 | 14:34
Updated At-11 Jun, 2026 | 15:30
Rejected At-
▼CVE Numbering Authority (CNA)
IBM i is Affected by Privilege Escalation []

IBM i 7.6, 7.5, 7.4, and 7.3 could allow a user to gain elevated privileges due to an unqualified library call. A malicious actor could cause user-controlled code to run with administrator privilege.

Affected Products
Vendor
IBM CorporationIBM
Product
i
CPEs
  • cpe:2.3:a:ibm:i:7.6.0:*:*:*:*:*:*:*
  • cpe:2.3:a:ibm:i:7.5.0:*:*:*:*:*:*:*
  • cpe:2.3:a:ibm:i:7.4.0:*:*:*:*:*:*:*
  • cpe:2.3:a:ibm:i:7.3.0:*:*:*:*:*:*:*
Versions
Affected
  • 7.6
  • 7.5
  • 7.4
  • 7.3
Problem Types
TypeCWE IDDescription
CWECWE-427CWE-427 Uncontrolled Search Path Element
Type: CWE
CWE ID: CWE-427
Description: CWE-427 Uncontrolled Search Path Element
Metrics
VersionBase scoreBase severityVector
3.18.8HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Version: 3.1
Base score: 8.8
Base severity: HIGH
Vector:
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions

IBM i Release5770-SS1 PTF Number(s)PTF Download Link(s)7.6SJ09689 SJ09666 SJ10017 SJ09859 https://www.ibm.com/mysupport/s/fix-information?legacy=SJ09689 https://www.ibm.com/mysupport/s/fix-information?legacy=SJ09666 https://www.ibm.com/mysupport/s/fix-information?legacy=SJ10017 https://www.ibm.com/mysupport/s/fix-information?legacy=SJ09859 7.5SJ09688 SJ09665 SJ09699 SJ10015 SJ09855 https://www.ibm.com/mysupport/s/fix-information?legacy=SJ09688 https://www.ibm.com/mysupport/s/fix-information?legacy=SJ09665 https://www.ibm.com/mysupport/s/fix-information?legacy=SJ09699 https://www.ibm.com/mysupport/s/fix-information?legacy=SJ10015 https://www.ibm.com/mysupport/s/fix-information?legacy=SJ09855 7.4SJ09690 SJ09664 SJ09701 SJ10028 SJ09851 https://www.ibm.com/mysupport/s/fix-information?legacy=SJ09690 https://www.ibm.com/mysupport/s/fix-information?legacy=SJ09664 https://www.ibm.com/mysupport/s/fix-information?legacy=SJ09701 https://www.ibm.com/mysupport/s/fix-information?legacy=SJ10028 https://www.ibm.com/mysupport/s/fix-information?legacy=SJ09851 7.3SJ09691 SJ09663 SJ10018 SJ09837 https://www.ibm.com/mysupport/s/fix-information?legacy=SJ09691 https://www.ibm.com/mysupport/s/fix-information?legacy=SJ09663 https://www.ibm.com/mysupport/s/fix-information?legacy=SJ10018 https://www.ibm.com/mysupport/s/fix-information?legacy=SJ09837 IBM recommends users running unsupported versions of affected products upgrade to a supported and fixed version of affected products.

Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
https://www.ibm.com/support/pages/node/7275756
vendor-advisory
patch
Hyperlink: https://www.ibm.com/support/pages/node/7275756
Resource:
vendor-advisory
patch
▼Authorized Data Publishers (ADP)
CISA ADP Vulnrichment
Affected Products
Metrics
VersionBase scoreBase severityVector
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
Details not found