Vulnerability in Ibm Rational_doors_next_generation

CVE-2015-0132

The XML parser in IBM Rational DOORS Next Generation 4.x before 4.0.7 iFix3 and 5.x before 5.0.2 and Rational Requirements Composer 2.x and 3.x before 3.0.1.6 iFix5 and 4.x before 4.0.7 iFix3 does not properly detect recursion during entit…

EPSS: 0.005 (67.8th percentile) — read the EPSS interpretation.

Affected products

Ibm Rational_doors_next_generation — versions 4.0.0, 4.0.1, 4.0.2
Ibm Rational_requirements_composer — versions 2.0, 2.0.0.1, 2.0.0.2
N/a — versions n/a

Weakness classification (CWE)

CWE-399

References

psirt@us.ibm.com (x_refsource_CONFIRM, Patch, Vendor Advisory)