CVE-2024-41787

Name of the Vulnerable Software and Affected Versions IBM Engineering Requirements Management DOORS Next versions 7.0.2 through 7.0.3

Description The issue is related to a race condition error in the software, which could allow a remote attacker to bypass security restrictions and execute arbitrary code. This is caused by a synchronization error when using a shared resource.

Recommendations For versions 7.0.2 and 7.0.3, consider disabling access to the vulnerable function until a patch is available. Restrict access to the affected module to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.