What is the severity of CVE-2017-1532?

CVE-2017-1532 has a moderate severity rating due to its potential for cross-site scripting vulnerabilities.

How do I fix CVE-2017-1532?

You can mitigate CVE-2017-1532 by applying the latest security updates provided by IBM for DOORS 9.5 and 9.6.

Which versions are affected by CVE-2017-1532?

CVE-2017-1532 affects IBM DOORS versions 9.5 and 9.6 up to specific patch levels.

What are the consequences of exploiting CVE-2017-1532?

Exploiting CVE-2017-1532 could lead to unauthorized actions or credential disclosure during trusted sessions.

Is CVE-2017-1532 related to cross-site scripting?

Yes, CVE-2017-1532 is specifically a cross-site scripting vulnerability that allows injection of arbitrary JavaScript.

Vulnerability/
CVE-2017-1532

medium

5.4

CWE

23/1/2018

5/2/2025

CVE-2017-1532: XSS

First published: Tue Jan 23 2018(Updated: )

IBM DOORS 9.5 and 9.6 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 130411.

Credit: psirt@us.ibm.com

Affected Software	Affected Version	How to fix
	>=9.5.0.0<=9.5.0.7
	>=9.5.1.0<=9.5.1.8
	>=9.5.2.0<=9.5.2.7
	>=9.6.0.0<=9.6.0.6
	>=9.6.1.0<=9.6.1.9
IBM Engineering Requirements Management DOORS Web Access	>=9.5.0.0<=9.5.0.7
IBM Engineering Requirements Management DOORS Web Access	>=9.5.1.0<=9.5.1.8
IBM Engineering Requirements Management DOORS Web Access	>=9.5.2.0<=9.5.2.7
IBM Engineering Requirements Management DOORS Web Access	>=9.6.0.0<=9.6.0.6
IBM Engineering Requirements Management DOORS Web Access	>=9.6.1.0<=9.6.1.9

Remedy

http://www.ibm.com/support/docview.wss?uid=swg22012789

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2017-1532?
CVE-2017-1532 has a moderate severity rating due to its potential for cross-site scripting vulnerabilities.
How do I fix CVE-2017-1532?
You can mitigate CVE-2017-1532 by applying the latest security updates provided by IBM for DOORS 9.5 and 9.6.
Which versions are affected by CVE-2017-1532?
CVE-2017-1532 affects IBM DOORS versions 9.5 and 9.6 up to specific patch levels.
What are the consequences of exploiting CVE-2017-1532?
Exploiting CVE-2017-1532 could lead to unauthorized actions or credential disclosure during trusted sessions.
Is CVE-2017-1532 related to cross-site scripting?
Yes, CVE-2017-1532 is specifically a cross-site scripting vulnerability that allows injection of arbitrary JavaScript.

collector/nvd-index
agent/type
collector/mitre-cve
source/MITRE
agent/weakness
agent/severity
agent/references
agent/author
agent/remedy
agent/first-publish-date
agent/description
agent/last-modified-date
agent/source
agent/event
agent/softwarecombine
agent/tags
collector/nvd-api
source/NVD
agent/software-canonical-lookup
agent/software-canonical-lookup-request
vendor/ibm
canonical/ibm engineering requirements management doors web access
version/ibm engineering requirements management doors web access/9.5.0.0
version/ibm engineering requirements management doors web access/9.5.0.7
version/ibm engineering requirements management doors web access/9.5.1.0
version/ibm engineering requirements management doors web access/9.5.1.8
version/ibm engineering requirements management doors web access/9.5.2.0
version/ibm engineering requirements management doors web access/9.5.2.7
version/ibm engineering requirements management doors web access/9.6.0.0
version/ibm engineering requirements management doors web access/9.6.0.6
version/ibm engineering requirements management doors web access/9.6.1.0
version/ibm engineering requirements management doors web access/9.6.1.9