IBM Engineering Requirements Management DOORS Next 7.0.2 and 7.0.3 could allow a remote attacker to bypass security restrictions, caused by a race condition. By sending a specially crafted request, an attacker could exploit this vulnerability to remotely execute code.
The vulnerability stems from a synchronization error (race condition, CWE-367) — a situation where an application checks a certain security condition and performs an operation in two separate steps, between which an attacker can intervene (known as TOCTOU). The attacker sends a specially crafted network request that, at the right moment in the process race, allows bypassing security restrictions. As a result, remote code execution (RCE) is possible without requiring authentication.
An attacker can remotely execute arbitrary code on the server without authentication, leading to complete compromise of system confidentiality, integrity, and availability.
Apply patches available from the vendor according to references: https://www.ibm.com/support/pages/node/7180636
IBM Engineering Requirements Management DOORS Next in versions 7.0.2 and 7.0.3
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HIBM Doors Next
APPIbm7.0.27.0.3
Related vulnerabilities
IBM Engineering Requirements Management DOORS Next 7.0.2 and 7.0.3 is vulnerable to an XML External Entity Inj...
IBM Jazz Team Server products use weaker than expected cryptographic algorithms that could allow an attacker t...
IBM Jazz Team Server products are vulnerable to cross-site scripting. This vulnerability allows users to embed...
IBM Jazz Team Server products contain an undisclosed vulnerability that could allow an authenticated user to p...
IBM Jazz Team Server products are vulnerable to stored cross-site scripting. This vulnerability allows users t...