Ibm Engineering Requirements Management Doors — known CVE vulnerabilities
Every CVE whose affected-product data names Ibm Engineering Requirements Management Doors, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (13)
CVE-2018-1457 — CVSS 9.8 (critical): An undisclosed vulnerability in IBM Rational DOORS 9.5.1 through 9.6.1.10 application allows an attacker to gain DOORS administrator…
CVE-2023-50304 — CVSS 7.1 (high): IBM Engineering Requirements Management DOORS Web Access 9.7.2.8 is vulnerable to an XML External Entity Injection (XXE) attack when…
CVE-2017-1545 — CVSS 6.8 (medium): IBM Doors Web Access 9.5 and 9.6 could allow an attacker with physical access to the system to log into the application using previously…
CVE-2023-28949 — CVSS 6.5 (medium): IBM Engineering Requirements Management DOORS 9.7.2.7 is vulnerable to cross-site request forgery which could allow an attacker to execute…
CVE-2024-43190 — CVSS 5.9 (medium): IBM Engineering Requirements Management DOORS 9.7.2.9, under certain configurations, could allow a remote attacker to obtain password reset…
CVE-2017-1567 — CVSS 5.4 (medium): IBM Doors Web Access 9.5 and 9.6 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code…
CVE-2017-1516 — CVSS 5.4 (medium): IBM Doors Web Access 9.5 and 9.6 could allow a remote attacker to hijack the clicking action of the victim. By persuading a victim to visit…
CVE-2017-1532 — CVSS 5.4 (medium): IBM DOORS 9.5 and 9.6 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web…
CVE-2017-1540 — CVSS 5.4 (medium): IBM Doors Web Access 9.5 and 9.6 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code…
CVE-2017-1563 — CVSS 5.4 (medium): IBM Doors Web Access 9.5 and 9.6 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code…
CVE-2023-50305 — CVSS 5.1 (medium): IBM Engineering Requirements Management DOORS 9.7.2.7 does not require that users should have strong passwords by default, which makes it…
CVE-2023-28525 — CVSS 4.8 (medium): IBM Engineering Requirements Management 9.7.2.7 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary…
CVE-2017-1515 — CVSS 4.3 (medium): IBM Doors Web Access 9.5 and 9.6 could allow an authenticated user to obtain sensitive information from HTTP internal server error…