Engineering Requirements Management Doors Next@7.0.3 Security Vulnerabilities and Issues — Engineering Requirements Management Doors Next@7.0.3 CVE List

Lucene search

IbmEngineering Requirements Management Doors Next7.0.3

5 matches found

CVE•added 2025/01/10 2:15 p.m.•60 views

CVE-2024-41787

IBM Engineering Requirements Management DOORS Next 7.0.2 and 7.0.3 could allow a remote attacker to bypass security restrictions, caused by a race condition. By sending a specially crafted request, an attacker could exploit this vulnerability to remotely execute code.

9.8CVSS9.5AI score0.0009EPSS

CVE•added 2025/03/03 4:15 p.m.•46 views

CVE-2024-41770

IBM Engineering Requirements Management DOORS Next 7.0.2, 7.0.3, and 7.1 could allow a remote attacker to download temporary files which could expose application logic or other sensitive information.

7.5CVSS7.5AI score0.00067EPSS

CVE•added 2024/06/06 7:15 p.m.•44 views

CVE-2023-45192

IBM Engineering Requirements Management DOORS Next 7.0.2 and 7.0.3 is vulnerable to an XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources. IBM X-Force ID: 268758.

8.2CVSS8.1AI score0.00046EPSS

CVE•added 2025/03/03 4:15 p.m.•43 views

CVE-2024-43169

IBM Engineering Requirements Management DOORS Next 7.0.2, 7.0.3, and 7.1 could allow a user to download a malicious file without verifying the integrity of the code.

8.8CVSS8.5AI score0.00026EPSS

CVE•added 2025/03/03 4:15 p.m.•40 views

CVE-2024-41771

IBM Engineering Requirements Management DOORS Next 7.0.2, 7.0.3, and 7.1 could allow a remote attacker to download temporary files which could expose application logic or other sensitive information.

7.5CVSS7.5AI score0.00067EPSS