CNNVD-202507-789 Information

CNNVD ID

CNNVD-202507-789

Related CVE

CVE-2024-43190

• CNNVD Published: 2025-07-07

Description (Chinese)

IBM Engineering Requirements Management DOORS是美国国际商业机器（IBM）公司的一款需求管理工具。 IBM Engineering Requirements Management DOORS 9.7.2.9版本存在授权问题漏洞，该漏洞源于配置不当，可能导致中间人攻击获取密码重置指令。

Description (English)

IBM Engineering Systems Management DOORS is a demand management tool for the United States International Business Machine (IBM). There is a mandate gap in IBM Engineering Reviews Management DOERS 9.2.2.9, which stems from inappropriate configurations and may lead to an attack by an intermediary on a password replacement directive.

Hazard Level

High

Vulnerability Type

授权问题

Affected Vendor

国际商业机器

Published

2025-07-07

Last Modified

2026-02-24

References

https://www.ibm.com/support/pages/node/7238992 https://access.redhat.com/security/cve/cve-2024-43190 https://nvd.nist.gov/vuln/detail/CVE-2024-43190

Patch

https://www.ibm.com/support/pages/node/7238992