CNNVD-202507-3020 Information

Jul 23, 2025 cve

CNNVD ID

CNNVD-202507-3020

CVE-2025-33020

  • CNNVD Published: 2025-07-23

Description (Chinese)

IBM Engineering Systems Design Rhapsody是美国国际商业机器(IBM)公司的IBM Engineering 产品组合的一部分。它为支持 UML、SysML、UAF 和 AUTOSAR 的系统工程师提供协作设计开发和测试环境。 IBM Engineering Systems Design Rhapsody 9.0.2版本和10.0版本和10.0.1版本存在安全漏洞,该漏洞源于传输敏感信息未加密,可能导致信息泄露。

Description (English)

IBM Engineering Systems Designing Rhapsody is part of the IBM Engineering product portfolio of IBM. It provides a collaborative design development and testing environment to support systems engineers in UML, SysML, UAF and AUTOSAR. IBM Engineering Systems Design Version 9.0.2 and Version 10.0 and Version 10.0.1 have a security loophole, which stems from the unencrypted transmission of sensitive information and may lead to the disclosure of information.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

国际商业机器

Published

2025-07-23

Last Modified

2026-02-24

References

https://www.ibm.com/support/pages/node/7240374

Patch

https://www.ibm.com/support/pages/node/7240374

Share on: