VYPR
Unrated severityNVD Advisory· Published Jun 6, 2024· Updated Aug 2, 2024

IBM Engineering Requirements Management DOORS Next XML external entity injection

CVE-2023-45192

Description

IBM Engineering Requirements Management DOORS Next 7.0.2 and 7.0.3 is vulnerable to an XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources. IBM X-Force ID: 268758.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • cpe:2.3:a:ibm:engineering_requirements_management_doors_next:7.0.2:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:ibm:engineering_requirements_management_doors_next:7.0.2:*:*:*:*:*:*:*range: 7.0.2, 7.0.3
    • (no CPE)range: 7.0.2, 7.0.3

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.