Ghostwire
Home / Vulnerabilities / CVE-2026-4051

CVE-2026-4051: IBM Engineering Lifecycle Management 7.0.3 ( through ) Interim Fix 021, 7.1.0 ( through ) Interim Fix 009, and 7.2.0 (...

HIGH CVSS 7.5

Published: May 26, 2026 | Last Modified: May 26, 2026

Description

IBM Engineering Lifecycle Management 7.0.3 ( through ) Interim Fix 021, 7.1.0 ( through ) Interim Fix 009, and 7.2.0 ( through ) Interim Fix 001 could allow an attacker with administrative privileges to execute remote code due to exposed method that is not properly restricted.

Ghostwire Analysis — What This Means Practically

This analysis is generated by Ghostwire from NVD, CISA KEV, EPSS, and open-source intelligence data. Verify findings through primary sources before acting.

Security Coverage (12 articles)

Tenable CVEs
CVE-2026-4051
 CVE Feed
CVE-2026-4051 - IBM Engineering Lifecycle Management - Jazz Foundation is vulnerable to Server Post-Auth Remote Code Execution
 Tenable CVEs
CVE-2026-40514
 CVE Feed
CVE-2026-40514 - SmarterTools SmarterMail < Build 9610 Cryptographic Weakness via Weak RNG
 Tenable CVEs
CVE-2026-40517
 Spain INCIBE via Google News
CVE-2026-40517 - INCIBE
 CVE Feed
CVE-2026-40515 - OpenHarness Permission Bypass via grep and glob root argument
 Tenable CVEs
CVE-2026-40518
 Tenable CVEs
CVE-2026-40516
 Tenable CVEs
CVE-2026-40515
 CVE Feed
CVE-2026-40516 - OpenHarness SSRF via web_fetch and web_search
 CVE Feed
CVE-2026-40518 - ByteDance DeerFlow Path Traversal and Arbitrary File Write via Bootstrap Mode

References