Primary

Context

IBM Engineering Requirements Management DOORS Next Race Condition Vulnerability Allowing Remote Code Execution

Vulnerability

Patched

A race condition vulnerability has been identified in IBM Engineering Requirements Management DOORS Next versions 7.0.2 and 7.0.3. This vulnerability could allow a remote attacker to bypass security restrictions and execute code remotely by sending a specially crafted request.

Impact

Exploitation of this vulnerability could lead to unauthorized code execution on the server where DOORS Next is running.

Remediation

Users of IBM Engineering Requirements Management DOORS Next 7.0.2 should install iFix 32 or newer. Users of version 7.0.3 should install iFix 10 or newer.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

2.6

impact

7.5

exploitability

5.9

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

2.6

impact

7.5

exploitability

5.9

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

IBM Engineering Requirements Management DOORS Next Race Condition Vulnerability Allowing Remote Code Execution

Vulnerability

Impact

Remediation

Affected Products

IBM Engineering Requirements Management DOORS Next

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating