CVE-2024-43169

HIGH 8.8

IBM Engineering Requirements Management DOORS Next file download

CVSS Score

8.8

EPSS Score

0.0%

EPSS Percentile

0th

IBM Engineering Requirements Management DOORS Next 7.0.2, 7.0.3, and 7.1 could allow a user to download a malicious file without verifying the integrity of the code.

CWE	CWE-494
Vendor	ibm
Product	engineering requirements management doors next
Published	Mar 3, 2025
Last Updated	Feb 26, 2026

Stay Ahead of the Next One

Get instant alerts for ibm engineering requirements management doors next

Be the first to know when new high vulnerabilities affecting ibm engineering requirements management doors next are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

Required

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Affected Versions

IBM / Engineering Requirements Management DOORS Next

7.0.2 7.0.3 7.1

References

NVD ↗ CVE.org ↗ EPSS Data ↗

ibm.com: https://www.ibm.com/support/pages/node/7184506