Unrated severityNVD Advisory· Published Aug 24, 2025· Updated Feb 26, 2026
IBM Engineering Lifecycle Management incorrect authorization
CVE-2025-36157
Description
IBM Jazz Foundation 7.0.2 to 7.0.2 iFix035, 7.0.3 to 7.0.3 iFix018, and 7.1.0 to 7.1.0 iFix004 could allow an unauthenticated remote attacker to update server property files that would allow them to perform unauthorized actions.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- cpe:2.3:a:ibm:jazz_foundation:7.0.2:*:*:*:*:*:*:*Range: 7.0.2
- Range: 7.0.2-7.0.2 iFix035, 7.0.3-7.0.3 iFix018, 7.1.0-7.1.0 iFix004
Patches
Vulnerability mechanics
References
1- www.ibm.com/support/pages/node/7242925mitrevendor-advisorypatch
News mentions
0No linked articles in our index yet.