CNNVD-202510-1600 Information

CNNVD ID

CNNVD-202510-1600

Related CVE

CVE-2025-2140

• CNNVD Published: 2025-10-12

Description (Chinese)

IBM Engineering Requirements Management DOORS Next是美国国际商业机器（IBM）公司的一个可扩展的解决方案。该解决方案可帮助您捕获、跟踪、分析和管理系统与高级 IT 应用开发。 IBM Engineering Requirements Management DOORS Next 7.0.2版本、7.0.3版本和7.1版本存在访问控制错误漏洞，该漏洞源于未正确验证源数据，可能导致网络上的认证用户伪造发送者电子邮件身份。

Description (English)

IBM Engineering Reforms Management DOORS Next is a scalable solution for IBM. This solution helps you to capture, track, analyse and manage and develop advanced IT applications. The access control error loophole in IBM Engineering Reviews Management DOORS Next version 7.02, version 7.0.3 and version 7.1 results from incorrect validation of source data, which may lead to the falsification of the sender ’ s e-mail identity by the online authentication user.

Hazard Level

High

Vulnerability Type

访问控制错误

Affected Vendor

国际商业机器

Published

2025-10-12

Last Modified

2026-02-24

References

https://www.ibm.com/support/pages/node/7247716

Patch

https://www.ibm.com/support/pages/node/7247716