CVE-2023-50305

MEDIUM

IBM Engineering Requirements Management DOORS 9.7.2.7 - Info Disclo...

Title source: llm
STIX 2.1

Description

IBM Engineering Requirements Management DOORS 9.7.2.7 does not require that users should have strong passwords by default, which makes it easier for attackers to compromise user accounts. IBM X-Force ID: 273336.

References (2)

Scores

CVSS v3 5.1
EPSS 0.0002
EPSS Percentile 4.6%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact partial

Details

CWE
CWE-521
Status published
Products (2)
ibm/engineering_requirements_management_doors 9.7.2.7
ibm/engineering_requirements_management_doors_web_access 9.7.2.7
Published Mar 01, 2024
Tracked Since Feb 18, 2026