CVE-2025-33076

Summary

IBM Engineering Systems Design Rhapsody 9.0.2, 10.0, and 10.0.1 is vulnerable to a stack-based buffer overflow, caused by improper bounds checking. A local user could overflow the buffer and execute arbitrary code on the system.

Affected Software

VendorProductVersion RangeStatus
IBMEngineering Systems Design Rhapsody9.0.2affected
IBMEngineering Systems Design Rhapsody10.0affected
IBMEngineering Systems Design Rhapsody10.0.1affected

Weaknesses

  • CWE-119: CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References