CVE-2017-1545 : IBM Doors Web Access 9.5 and 9.6 could allow an attacker with physical access to

IBM Doors Web Access 9.5 and 9.6 could allow an attacker with physical access to the system to log into the application using previously stored credentials. IBM X-Force ID: 130914.

Published 2018-01-26 21:29:01

Updated 2025-02-05 18:38:27

Source IBM Corporation

View at NVD, CVE.org

Products affected by CVE-2017-1545

IBM » Engineering Requirements Management Doors
Versions from including (>=) 9.6.1.0 and up to, including, (<=) 9.6.1.9
cpe:2.3:a:ibm:engineering_requirements_management_doors:*:*:*:*:*:*:*:*
Matching versions
IBM » Engineering Requirements Management Doors
Versions from including (>=) 9.5.0.0 and up to, including, (<=) 9.5.0.7
cpe:2.3:a:ibm:engineering_requirements_management_doors:*:*:*:*:*:*:*:*
Matching versions
IBM » Engineering Requirements Management Doors
Versions from including (>=) 9.5.2.0 and up to, including, (<=) 9.5.2.7
cpe:2.3:a:ibm:engineering_requirements_management_doors:*:*:*:*:*:*:*:*
Matching versions
IBM » Engineering Requirements Management Doors
Versions from including (>=) 9.6.0.0 and up to, including, (<=) 9.6.0.6
cpe:2.3:a:ibm:engineering_requirements_management_doors:*:*:*:*:*:*:*:*
Matching versions
IBM » Engineering Requirements Management Doors
Versions from including (>=) 9.5.1.0 and up to, including, (<=) 9.5.1.8
cpe:2.3:a:ibm:engineering_requirements_management_doors:*:*:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2017-1545

EPSS FAQ

0.07%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 17 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2017-1545

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
2.1	LOW	AV:L/AC:L/Au:N/C:P/I:N/A:N	3.9	2.9	NIST
Access Vector: Local Access Complexity: Low Authentication: None Confidentiality Impact: Partial Integrity Impact: None Availability Impact: None
6.8	MEDIUM	CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H	0.9	5.9	NIST
Attack Vector: Physical Attack Complexity: Low Privileges Required: None User Interaction: None Scope: Unchanged Confidentiality: High Integrity: High Availability: High

References for CVE-2017-1545

https://exchange.xforce.ibmcloud.com/vulnerabilities/130914

IBM Doors Web Access improper access control CVE-2017-1545 Vulnerability Report
VDB Entry;Vendor Advisory
http://www.ibm.com/support/docview.wss?uid=swg22012789

IBM Security Bulletin: Rational DOORS is affected by multiple vulnerabilities
Patch;Vendor Advisory

CVEs referencing this url
http://www.securityfocus.com/bid/102896

IBM DOORS Web Access CVE-2017-1545 Local Access Bypass Vulnerability
Third Party Advisory;VDB Entry

Jump to

Vulnerability Details : CVE-2017-1545

Products affected by CVE-2017-1545

Exploit prediction scoring system (EPSS) score for CVE-2017-1545

CVSS scores for CVE-2017-1545

References for CVE-2017-1545