IBM Engineering Requirements Management Doors Next security bypass_CVE-2025-2139

3.5 / 10

LOW

CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N

Description

IBM Engineering Requirements Management Doors Next 7.0.2, 7.0.3, and 7.1 could allow an authenticated user on the network to delete reviews from other users due to client-side enforcement of server-side security.

Basic Information

ID CVE-2025-2139

Source ibm

Published Oct 12, 2025 at 13:35

Affected Product

Vendor IBM

Product Engineering Requirements Management Doors Next

Version 7.0.2

Affected Versions IBM Engineering Requirements Management Doors Next 7.0.2
IBM Engineering Requirements Management Doors Next 7.0.3
IBM Engineering Requirements Management Doors Next 7.1

CWE Classification

CWE-602

References

www.ibm.com /support/pages/node/7247716

{
    "lastseen": "",
    "description": "IBM Engineering Requirements Management Doors Next 7.0.2, 7.0.3, and 7.1 could allow an authenticated user on the network to delete reviews from other users due to client-side enforcement of server-side security.",
    "published": "2025-10-12T13:35:24.921Z",
    "modified": "2025-10-12T13:35:24.921Z",
    "type": "cve",
    "title": "IBM Engineering Requirements Management Doors Next security bypass",
    "source": "ibm",
    "references": "https://www.ibm.com/support/pages/node/7247716",
    "id": "CVE-2025-2139",
    "bulletinFamily": "",
    "cwe": [
        "CWE-602"
    ],
    "cvelist": null,
    "sourceData": "IBM Engineering Requirements Management Doors Next 7.0.2\nIBM Engineering Requirements Management Doors Next 7.0.3\nIBM Engineering Requirements Management Doors Next 7.1",
    "sourceHref": "",
    "cvss": {
        "score": 3.5,
        "severity": "LOW",
        "vector": "CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Engineering Requirements Management Doors Next",
    "version": "7.0.2",
    "vendor": "IBM",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}