Skip to main content

IBM Engineering Lifecycle Management CVE-2026-4051

| EUVDEUVD-2026-31951 HIGH
Exposed Dangerous Method or Function (CWE-749)
2026-05-26 ibm GHSA-p33w-c5h4-h687
7.2
CVSS 3.1 · NVD
Share

Severity by source

NVD PRIMARY
7.2 HIGH
AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Attack Vector
Network
Attack Complexity
Low
Privileges Required
High
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High

Lifecycle Timeline

1
Analysis Generated
Jun 08, 2026 - 10:16 vuln.today

DescriptionCVE.org

IBM Engineering Lifecycle Management 7.0.3 ( through ) Interim Fix 021, 7.1.0 ( through ) Interim Fix 009, and 7.2.0 ( through ) Interim Fix 001 could allow an attacker with administrative privileges to execute remote code due to exposed method that is not properly restricted.

AnalysisAI

Remote code execution in IBM Engineering Lifecycle Management (ELM) versions 7.0.3 through Interim Fix 021, 7.1.0 through Interim Fix 009, and 7.2.0 through Interim Fix 001 allows an attacker with administrative privileges to execute arbitrary code via an exposed method that is not properly restricted (CWE-749). At time of analysis there is no public exploit identified and EPSS is very low (0.01%), but the SSVC technical impact is rated total, making this a high-impact post-authentication issue against ELM administrators. IBM has published a patch advisory and CVSS is 7.2 (AV:N/AC:L/PR:H/UI:N/C:H/I:H/A:H).

Technical ContextAI

IBM Engineering Lifecycle Management is an enterprise application lifecycle and requirements management suite (formerly Rational/Jazz-based products such as DOORS Next, Engineering Workflow Management, Engineering Test Management) typically deployed on WebSphere Liberty/Jazz Team Server stacks. CWE-749 (Exposed Dangerous Method or Function) indicates that an internal administrative or management method was reachable through the application's interface without sufficient restrictions, allowing an authenticated administrator to invoke functionality that crosses the boundary into arbitrary code execution on the server. The CPE cpe:2.3:a:ibm:engineering_lifecycle_management:*:*:*:*:*:*:*:* confirms the affected product family without narrowing further at the version level, so the EUVD/IBM-supplied version ranges are the authoritative scoping source.

RemediationAI

Apply the patch available per vendor advisory at https://www.ibm.com/support/pages/node/7274077, upgrading beyond Interim Fix 021 on 7.0.3, beyond Interim Fix 009 on 7.1.0, and beyond Interim Fix 001 on 7.2.0 (exact fixed Interim Fix designations should be taken from the IBM support page, which is the authoritative source). Until the patch is rolled out, treat ELM administrator accounts as Tier-0: enforce MFA on all admin logins, restrict administrative console access to a dedicated jump-host or VPN segment rather than exposing it to the corporate network, audit and reduce the membership of ELM administrative groups, and monitor application and OS-level logs on the Jazz Team Server for unexpected process creation by the WebSphere/Liberty service account - the trade-off is operational friction for administrators and additional logging volume, with no functional loss to end users.

CVE-2023-40958 HIGH POC
8.8 Sep 15

A SQL injection vulnerability in Didotech srl Engineering & Lifecycle Management (aka pdm) v.14.0, v.15.0 and v.16.0 fix

CVE-2023-40957 HIGH POC
8.8 Sep 15

A SQL injection vulnerability in Didotech srl Engineering & Lifecycle Management (aka pdm) v.14.0, v.15.0 and v.16.0 fix

CVE-2023-40955 HIGH POC
8.8 Sep 15

A SQL injection vulnerability in Didotech srl Engineering & Lifecycle Management (aka pdm) v.14.0, v.15.0 and v.16.0 fix

CVE-2026-3660 CRITICAL
9.8 May 26

Authorization bypass in IBM Engineering Lifecycle Management (ELM) 7.0.3, 7.1.0, and 7.2.0 allows unauthenticated remote

CVE-2026-3603 HIGH
7.1 May 26

XML External Entity (XXE) injection in IBM Engineering Lifecycle Management (ELM) 7.0.3, 7.1.0, and 7.2.0 allows authent

CVE-2021-20502 HIGH
7.1 Mar 30

IBM Jazz Foundation Products are vulnerable to an XML External Entity Injection (XXE) attack when processing XML data. R

CVE-2021-20371 MEDIUM
6.5 Jun 02

IBM Jazz Foundation and IBM Engineering products could allow a remote attacker to obtain sensitive information when an e

CVE-2025-36033 MEDIUM
5.4 Feb 03

Engineering Lifecycle Management versions up to 7.0.3 is affected by cross-site scripting (xss) (CVSS 5.4).

CVE-2021-29670 MEDIUM
5.4 Jun 02

IBM Jazz Foundation and IBM Engineering products are vulnerable to cross-site scripting. Rated medium severity (CVSS 5.4

CVE-2021-29668 MEDIUM
5.4 Jun 02

IBM Jazz Foundation and IBM Engineering products are vulnerable to cross-site scripting. Rated medium severity (CVSS 5.4

CVE-2021-20348 MEDIUM
5.4 Jun 02

IBM Jazz Foundation and IBM Engineering products are vulnerable to server-side request forgery (SSRF). Rated medium seve

CVE-2021-20347 MEDIUM
5.4 Jun 02

IBM Jazz Foundation and IBM Engineering products are vulnerable to server-side request forgery (SSRF). Rated medium seve

Share

CVE-2026-4051 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy