IBM Engineering Requirements Management Doors Next denial of service

6.5 / 10

MEDIUM

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Description

IBM Engineering Requirements Management Doors Next 7.0.2, 7.0.3, and 7.1 could allow an authenticated user to cause a denial of service by uploading specially crafted files using uncontrolled recursion.

Basic Information

ID CVE-2025-33096

Source ibm

Published Oct 12, 2025 at 13:31

Modified Oct 12, 2025 at 13:33

Affected Product

Vendor IBM

Product Engineering Requirements Management Doors Next

Version 7.0.2

Affected Versions IBM Engineering Requirements Management Doors Next 7.0.2
IBM Engineering Requirements Management Doors Next 7.0.3
IBM Engineering Requirements Management Doors Next 7.1

CWE Classification

CWE-674

References

www.ibm.com /support/pages/node/7247716

{
    "lastseen": "",
    "description": "IBM Engineering Requirements Management Doors Next 7.0.2, 7.0.3, and 7.1 could allow an authenticated user to cause a denial of service by uploading specially crafted files using uncontrolled recursion.",
    "published": "2025-10-12T13:31:04.723Z",
    "modified": "2025-10-12T13:33:41.404Z",
    "type": "cve",
    "title": "IBM Engineering Requirements Management Doors Next denial of service",
    "source": "ibm",
    "references": "https://www.ibm.com/support/pages/node/7247716",
    "id": "CVE-2025-33096",
    "bulletinFamily": "",
    "cwe": [
        "CWE-674"
    ],
    "cvelist": null,
    "sourceData": "IBM Engineering Requirements Management Doors Next 7.0.2\nIBM Engineering Requirements Management Doors Next 7.0.3\nIBM Engineering Requirements Management Doors Next 7.1",
    "sourceHref": "",
    "cvss": {
        "score": 6.5,
        "severity": "MEDIUM",
        "vector": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Engineering Requirements Management Doors Next",
    "version": "7.0.2",
    "vendor": "IBM",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}

IBM Engineering Requirements Management Doors Next denial of service_CVE-2025-33096