CVE-2026-3660

🗓️ 26 May 2026 18:23:30Reported by ibmType

Unauthenticated attacker can update server properties to gain unauthorized access in IBM Engineering Lifecycle Management Jazz Foundation.

Reporter	Title	Published	Views	Family All 10
IBM Security Bulletins	Security Bulletin: IBM Engineering Lifecycle Management - Jazz Foundation is vulnerable to Authentication Bypass	29 May 202620:04	–	ibm
ATTACKERKB	CVE-2026-3660	26 May 202618:23	–	attackerkb
Circl	CVE-2026-3660	26 May 202619:38	–	circl
CNNVD	IBM Engineering Lifecycle Management 安全漏洞	26 May 202600:00	–	cnnvd
Cvelist	CVE-2026-3660 IBM Engineering Lifecycle Management - Jazz Foundation is vulnerable to Authentication Bypass	26 May 202618:23	–	cvelist
EUVD	EUVD-2026-31954	26 May 202618:23	–	euvd
NVD	CVE-2026-3660	26 May 202619:16	–	nvd
Positive Technologies	PT-2026-43375	26 May 202600:00	–	ptsecurity
RedhatCVE	CVE-2026-3660	28 May 202608:12	–	redhatcve
Vulnrichment	CVE-2026-3660 IBM Engineering Lifecycle Management - Jazz Foundation is vulnerable to Authentication Bypass	26 May 202618:23	–	vulnrichment

NVD

Vulners

Node

ibm engineering_lifecycle_managementMatch7.0.3-

ibm engineering_lifecycle_managementMatch7.0.3ifix002

ibm engineering_lifecycle_managementMatch7.0.3ifix003

ibm engineering_lifecycle_managementMatch7.0.3ifix004

ibm engineering_lifecycle_managementMatch7.0.3ifix005

ibm engineering_lifecycle_managementMatch7.0.3ifix006

ibm engineering_lifecycle_managementMatch7.0.3ifix007

ibm engineering_lifecycle_managementMatch7.0.3ifix008

ibm engineering_lifecycle_managementMatch7.0.3ifix009

ibm engineering_lifecycle_managementMatch7.0.3ifix010

ibm engineering_lifecycle_managementMatch7.0.3ifix011

ibm engineering_lifecycle_managementMatch7.0.3ifix012

ibm engineering_lifecycle_managementMatch7.0.3ifix013

ibm engineering_lifecycle_managementMatch7.0.3ifix014

ibm engineering_lifecycle_managementMatch7.0.3ifix015

ibm engineering_lifecycle_managementMatch7.0.3ifix016

ibm engineering_lifecycle_managementMatch7.0.3ifix017

ibm engineering_lifecycle_managementMatch7.0.3ifix018

ibm engineering_lifecycle_managementMatch7.0.3ifix019

ibm engineering_lifecycle_managementMatch7.0.3ifix020

ibm engineering_lifecycle_managementMatch7.0.3ifix021

ibm engineering_lifecycle_managementMatch7.1.0-

ibm engineering_lifecycle_managementMatch7.1.0ifix001

ibm engineering_lifecycle_managementMatch7.1.0ifix002

ibm engineering_lifecycle_managementMatch7.1.0ifix003

ibm engineering_lifecycle_managementMatch7.1.0ifix004

ibm engineering_lifecycle_managementMatch7.1.0ifix005

ibm engineering_lifecycle_managementMatch7.1.0ifix006

ibm engineering_lifecycle_managementMatch7.1.0ifix007

ibm engineering_lifecycle_managementMatch7.1.0ifix008

ibm engineering_lifecycle_managementMatch7.1.0ifix009

ibm engineering_lifecycle_managementMatch7.2.0-

ibm engineering_lifecycle_managementMatch7.2.0ifix001

[
  {
    "vendor": "IBM",
    "product": "Engineering Lifecycle Management",
    "versions": [
      {
        "status": "affected",
        "version": "7.0.3",
        "lessThanOrEqual": "Interim Fix 021",
        "versionType": "semver"
      },
      {
        "status": "affected",
        "version": "7.1.0",
        "lessThanOrEqual": "Interim Fix 009",
        "versionType": "semver"
      },
      {
        "status": "affected",
        "version": "7.2.0",
        "lessThanOrEqual": "Interim Fix 001",
        "versionType": "semver"
      }
    ],
    "defaultStatus": "unaffected",
    "cpes": [
      "cpe:2.3:a:ibm:engineering_lifecycle_management:7.0.3:ifix021:*:*:*:*:*:*:*",
      "cpe:2.3:a:ibm:engineering_lifecycle_management:7.1.0:ifix009:*:*:*:*:*:*:*",
      "cpe:2.3:a:ibm:engineering_lifecycle_management:7.2.0:ifix001:*:*:*:*:*:*:*"
    ]
  }
]

Source	Link
ibm	www.ibm.com/support/pages/node/7274079

29 May 2026 19:31Current

5.8Medium risk

Vulners AI Score5.8

CVSS 3.19.8

EPSS0.00528

SSVC

CWE-863