CVE-2026-4051 | THREATINT

Description

IBM Engineering Lifecycle Management 7.0.3, 7.1.0, and 7.2.0 could allow an attacker with administrative privileges to execute remote code due to exposed method that is not properly restricted.

PUBLISHED Reserved 2026-03-12 | Published 2026-05-26 | Updated 2026-05-28 | Assigner ibm

HIGH: 7.2CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Problem types

CWE-749 Exposed Dangerous Method or Function

Product status

Default status

unaffected

7.0.3 (semver)

affected

7.1.0 (semver)

affected

7.2.0 (semver)

affected

References

www.ibm.com/support/pages/node/7274077 vendor-advisory patch

cve.org (CVE-2026-4051)

nvd.nist.gov (CVE-2026-4051)

Download JSON