CVE-2025-36157
EUVD-2025-2566324.08.2025, 02:15
IBM Jazz Foundation 7.0.2 to 7.0.2 iFix035, 7.0.3 to 7.0.3 iFix018, and 7.1.0 to 7.1.0 iFix004 could allow an unauthenticated remote attacker to update server property files that would allow them to perform unauthorized actions.Enginsight
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| ibm | jazz_foundation | 7.0.2 |
| ibm | jazz_foundation | 7.0.2:ifix001 |
| ibm | jazz_foundation | 7.0.2:ifix002 |
| ibm | jazz_foundation | 7.0.2:ifix003 |
| ibm | jazz_foundation | 7.0.2:ifix004 |
| ibm | jazz_foundation | 7.0.2:ifix005 |
| ibm | jazz_foundation | 7.0.2:ifix006 |
| ibm | jazz_foundation | 7.0.2:ifix007 |
| ibm | jazz_foundation | 7.0.2:ifix008a |
| ibm | jazz_foundation | 7.0.2:ifix009 |
| ibm | jazz_foundation | 7.0.2:ifix010 |
| ibm | jazz_foundation | 7.0.2:ifix011 |
| ibm | jazz_foundation | 7.0.2:ifix012 |
| ibm | jazz_foundation | 7.0.2:ifix013 |
| ibm | jazz_foundation | 7.0.2:ifix014 |
| ibm | jazz_foundation | 7.0.2:ifix016 |
| ibm | jazz_foundation | 7.0.2:ifix017 |
| ibm | jazz_foundation | 7.0.2:ifix018 |
| ibm | jazz_foundation | 7.0.2:ifix020a |
| ibm | jazz_foundation | 7.0.2:ifix021 |
| ibm | jazz_foundation | 7.0.2:ifix022 |
| ibm | jazz_foundation | 7.0.2:ifix023 |
| ibm | jazz_foundation | 7.0.2:ifix024 |
| ibm | jazz_foundation | 7.0.2:ifix025 |
| ibm | jazz_foundation | 7.0.2:ifix026a |
| ibm | jazz_foundation | 7.0.2:ifix027 |
| ibm | jazz_foundation | 7.0.2:ifix028 |
| ibm | jazz_foundation | 7.0.2:ifix029 |
| ibm | jazz_foundation | 7.0.2:ifix030 |
| ibm | jazz_foundation | 7.0.2:ifix031 |
| ibm | jazz_foundation | 7.0.2:ifix032 |
| ibm | jazz_foundation | 7.0.2:ifix033 |
| ibm | jazz_foundation | 7.0.2:ifix034 |
| ibm | jazz_foundation | 7.0.2:ifix035 |
| ibm | jazz_foundation | 7.0.3 |
| ibm | jazz_foundation | 7.0.3:ifix001 |
| ibm | jazz_foundation | 7.0.3:ifix002 |
| ibm | jazz_foundation | 7.0.3:ifix003 |
| ibm | jazz_foundation | 7.0.3:ifix004 |
| ibm | jazz_foundation | 7.0.3:ifix005 |
| ibm | jazz_foundation | 7.0.3:ifix006 |
| ibm | jazz_foundation | 7.0.3:ifix007 |
| ibm | jazz_foundation | 7.0.3:ifix008 |
| ibm | jazz_foundation | 7.0.3:ifix009 |
| ibm | jazz_foundation | 7.0.3:ifix010 |
| ibm | jazz_foundation | 7.0.3:ifix011 |
| ibm | jazz_foundation | 7.0.3:ifix012 |
| ibm | jazz_foundation | 7.0.3:ifix013 |
| ibm | jazz_foundation | 7.0.3:ifix014 |
| ibm | jazz_foundation | 7.0.3:ifix015 |
| ibm | jazz_foundation | 7.0.3:ifix016 |
| ibm | jazz_foundation | 7.0.3:ifix017 |
| ibm | jazz_foundation | 7.0.3:ifix018 |
| ibm | jazz_foundation | 7.1.0 |
| ibm | jazz_foundation | 7.1.0:ifix001 |
| ibm | jazz_foundation | 7.1.0:ifix002 |
| ibm | jazz_foundation | 7.1.0:ifix003 |
| ibm | jazz_foundation | 7.1.0:ifix004 |
𝑥
= Vulnerable software versions
Early Detection
Affected products identified ahead of NVD analysis through intelligence sources.
| Vendor | Product | Version | Source |
|---|---|---|---|
| ibm | engineering_lifecycle_management | 7.0.2 ≤ | CNA |
| ibm | engineering_lifecycle_management | 7.0.3 ≤ | CNA |
| ibm | engineering_lifecycle_management | 7.1.0 ≤ | CNA |