CVE-2025-33096

Summary

IBM Engineering Requirements Management Doors Next 7.0.2, 7.0.3, and 7.1 could allow an authenticated user to cause a denial of service by uploading specially crafted files using uncontrolled recursion.

Affected Software

VendorProductVersion RangeStatus
IBMEngineering Requirements Management Doors Next7.0.2affected
IBMEngineering Requirements Management Doors Next7.0.3affected
IBMEngineering Requirements Management Doors Next7.1affected

Weaknesses

  • CWE-674: CWE-674 Uncontrolled Recursion

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References