Product

Engineering Lifecycle Management 7.0.3

2 briefs RSS

CVE-2026-4051: IBM Engineering Lifecycle Management Remote Code Execution

IBM Engineering Lifecycle Management 7.0.3 through Interim Fix 021, 7.1.0 through Interim Fix 009, and 7.2.0 through Interim Fix 001 could allow an attacker with administrative privileges to execute remote code due to an exposed method that is not properly restricted, potentially leading to complete system compromise.

Engineering Lifecycle Management 7.0.3 +2 cve rce ibm

2r 1t 1c 1h ago

medium advisory

CVE-2026-3603: IBM Engineering Lifecycle Management XXE Vulnerability

2 rules 1 TTP 1 CVE

IBM Engineering Lifecycle Management 7.0.3, 7.1.0, and 7.2.0 are vulnerable to XML external entity injection (XXE), allowing an authenticated attacker to expose sensitive information or consume memory resources.

Engineering Lifecycle Management 7.0.3 +2 cve xxe injection

2r 1t 1c 1h ago