CVE-2025-13734
MEDIUM WAF: Low
CVSS 5.4
Published: 2026-03-03
CWE-862 CWE-863
IBM Engineering Requirements Management DOORS Next 7.1, and 7.2 could allow an authenticated user to view and edit data beyond their authorized access permissions.
WAF Coverage Analysis
Missing Authorization
Low WAF Coverage
OWASP: A01:2021 Broken Access Control
Incorrect Authorization
Low WAF Coverage
OWASP: A01:2021 Broken Access Control
Affected Software
| Vendor | Product | Version |
|---|---|---|
| ibm | engineering_requirements_management_doors_next | 7.1 |
| ibm | engineering_requirements_management_doors_next | 7.2 |
References
- www.ibm.com (Vendor Advisory)