CVE-2023-45192 IBM Engineering Requirements Management DOORS Next XML external entity injection

🗓️ 06 Jun 2024 18:49:05Reported by ibmType

IBM Engineering Requirements Management DOORS Next 7.0.2 and 7.0.3 XML external entity injection vulnerabilit

Reporter	Title	Published	Views	Family All 9
IBM Security Bulletins	Security Bulletin: IBM Engineering Requirements Management DOORS Next is vulnerable to XML External Entity Injection (XEE) (CVE-2023-45192)	5 Jun 202413:14	–	ibm
CNNVD	IBM Engineering Requirements Management DOORS Next Code Issue Vulnerability	6 Jun 202400:00	–	cnnvd
CVE	CVE-2023-45192	6 Jun 202418:49	–	cve
EUVD	EUVD-2023-49499	3 Oct 202520:07	–	euvd
NVD	CVE-2023-45192	6 Jun 202419:15	–	nvd
OSV	CVE-2023-45192	6 Jun 202419:15	–	osv
Positive Technologies	PT-2024-13223 · Ibm · Ibm Engineering Requirements Management Doors Next	6 Jun 202400:00	–	ptsecurity
RedhatCVE	CVE-2023-45192	9 Jan 202608:58	–	redhatcve
Vulnrichment	CVE-2023-45192 IBM Engineering Requirements Management DOORS Next XML external entity injection	6 Jun 202418:49	–	vulnrichment

[
  {
    "cpes": [
      "cpe:2.3:a:ibm:engineering_requirements_management_doors_next:7.0.2:*:*:*:*:*:*:*",
      "cpe:2.3:a:ibm:engineering_requirements_management_doors_next:7.0.3:*:*:*:*:*:*:*"
    ],
    "defaultStatus": "unaffected",
    "product": "Engineering Requirements Management DOORS Next",
    "vendor": "IBM",
    "versions": [
      {
        "status": "affected",
        "version": "7.0.2, 7.0.3"
      }
    ]
  }
]

Source	Link
ibm	www.ibm.com/support/pages/node/7156492
exchange	www.exchange.xforce.ibmcloud.com/vulnerabilities/268758

06 Jun 2024 18:49Current

CVSS 3.18.2

EPSS0.00062

CWE-611