CVE-2025-13734

Summary

IBM Engineering Requirements Management DOORS Next 7.1, and 7.2 could allow an authenticated user to view and edit data beyond their authorized access permissions.

Affected Software

VendorProductVersion RangeStatus
IBMEngineering Requirements Management DOORS Next7.1 <= rage Scale 5.2.3.0 - 5.2.3.5affected
IBMEngineering Requirements Management DOORS Next7.2 <= rage Scale 6.0.0.0 - 6.0.0.1affected

Weaknesses

  • CWE-862: CWE-862 Missing Authorization

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References