Unrated severityNVD Advisory· Published Oct 7, 2025· Updated Oct 14, 2025
IBM Jazz Foundation cross-site scripting
CVE-2025-1826
Description
IBM Engineering Requirements Management DOORS Next (IBM Jazz Foundation 7.0.2 to 7.0.2 iFix034, 7.0.3 to 7.0.3 iFix016, and 7.1.0 to 7.1.0 iFix004) is vulnerable to stored cross-site scripting. This vulnerability allows authenticated users on the host network to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: 7.0.2 - 7.0.2 iFix034, 7.0.3 - 7.0.3 iFix016, 7.1.0 - 7.1.0 iFix004
Patches
Vulnerability mechanics
References
1- www.ibm.com/support/pages/node/7247292mitrevendor-advisorypatch
News mentions
0No linked articles in our index yet.