Ibm Engineering Requirements Management Doors Next — known CVE vulnerabilities
Every CVE whose affected-product data names Ibm Engineering Requirements Management Doors Next, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (21)
CVE-2024-43169 — CVSS 8.8 (high): IBM Engineering Requirements Management DOORS Next 7.0.2, 7.0.3, and 7.1 could allow a user to download a malicious file without verifying…
CVE-2020-4965 — CVSS 7.5 (high): IBM Jazz Team Server products use weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive…
CVE-2024-41771 — CVSS 7.5 (high): IBM Engineering Requirements Management DOORS Next 7.0.2, 7.0.3, and 7.1 could allow a remote attacker to download temporary files which…
CVE-2024-41770 — CVSS 7.5 (high): IBM Engineering Requirements Management DOORS Next 7.0.2, 7.0.3, and 7.1 could allow a remote attacker to download temporary files which…
CVE-2025-33096 — CVSS 6.5 (medium): IBM Engineering Requirements Management Doors Next 7.0.2, 7.0.3, and 7.1 could allow an authenticated user to cause a denial of service by…
CVE-2025-2140 — CVSS 5.7 (medium): IBM Engineering Requirements Management Doors Next 7.0.2, 7.0.3, and 7.1 could allow an authenticated user on the network to spoof email…
CVE-2020-4855 — CVSS 5.4 (medium): IBM Jazz Foundation products is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in…
CVE-2020-4865 — CVSS 5.4 (medium): IBM Jazz Foundation products is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in…
CVE-2020-4920 — CVSS 5.4 (medium): IBM Jazz Team Server products are vulnerable to stored cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript…
CVE-2020-4546 — CVSS 5.4 (medium): IBM Jazz Team Server based Applications are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary…
CVE-2021-20357 — CVSS 5.4 (medium): IBM Jazz Foundation products is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in…
CVE-2021-20519 — CVSS 5.4 (medium): IBM Jazz Team Server products are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in…
CVE-2020-4542 — CVSS 5.4 (medium): IBM Jazz Foundation and IBM Engineering products are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary…
CVE-2020-4524 — CVSS 5.4 (medium): IBM Jazz Foundation products is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in…
CVE-2020-4522 — CVSS 5.4 (medium): IBM Jazz Team Server based Applications are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary…
CVE-2025-13734 — CVSS 5.4 (medium): IBM Engineering Requirements Management DOORS Next 7.1, and 7.2 could allow an authenticated user to view and edit data beyond their…
CVE-2020-4445 — CVSS 5.4 (medium): IBM Jazz Team Server based Applications are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary…
CVE-2020-4547 — CVSS 5.4 (medium): IBM Jazz Foundation products could allow a remote attacker to hijack the clicking action of the victim. By persuading a victim to visit a…
CVE-2020-4964 — CVSS 4.3 (medium): IBM Jazz Team Server products contain an undisclosed vulnerability that could allow an authenticated user to present a customized message…
CVE-2025-2139 — CVSS 3.5 (low): IBM Engineering Requirements Management Doors Next 7.0.2, 7.0.3, and 7.1 could allow an authenticated user on the network to delete reviews…
CVE-2025-2138 — CVSS 3.5 (low): IBM Engineering Requirements Management Doors Next 7.0.2, 7.0.3, and 7.1 could allow an authenticated user on the network to delete…