Primary

Context

IBM Engineering Requirements Management DOORS Next Email Spoofing Vulnerability

Vulnerability

An email spoofing vulnerability has been identified in IBM Engineering Requirements Management DOORS Next versions 7.0.2, 7.0.3, and 7.1. This vulnerability allows an authenticated user on the network to impersonate the email identity of the sender, due to inadequate verification of source data.

Impact

Exploitation of this vulnerability could lead to unauthorized email identity spoofing, allowing for potential misrepresentation in communications.

Remediation

Users of IBM Engineering Requirements Management DOORS Next 7.0.2 should install iFix 36. Users of version 7.0.3 should install iFix 19 or newer. For version 7.1.0, iFix 05 or newer should be installed.

Added: Oct 12, 2025, 2:19 PM

Updated: Oct 12, 2025, 2:19 PM

Vulnerability Rating

Custom Algorithm

spread

2.6

impact

0.6

exploitability

4.9

remediation

7.7

relevance

0.7

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

2.6

impact

0.6

exploitability

4.9

remediation

7.7

relevance

0.7

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

IBM Engineering Requirements Management DOORS Next Email Spoofing Vulnerability

Vulnerability

Impact

Remediation

Affected Products

IBM Engineering Requirements Management DOORS Next

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating