This page lists publicly disclosed CVE vulnerabilities affecting ibm engineering_systems_design_rhapsody (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-33077 | IBM Engineering Systems Design Rhapsody 9.0.2, 10.0, and 10.0.1 is vulnerable to a stack-based buffer overflow, caused by improper bounds checking. A local user could overflow the buffer and execute arbitrary code on the system. | [email protected] | 8.8 | 0.39% | 2025-07-23 | 2026-06-17 |
| CVE-2025-33076 | IBM Engineering Systems Design Rhapsody 9.0.2, 10.0, and 10.0.1 is vulnerable to a stack-based buffer overflow, caused by improper bounds checking. A local user could overflow the buffer and execute arbitrary code on the system. | [email protected] | 8.8 | 0.39% | 2025-07-23 | 2026-06-17 |
| CVE-2025-33020 | IBM Engineering Systems Design Rhapsody 9.0.2, 10.0, and 10.0.1 transmits sensitive information without encryption that could allow an attacker to obtain highly sensitive information. | [email protected] | 5.9 | 0.06% | 2025-07-23 | 2026-06-17 |
| CVE-2024-41779 | IBM Engineering Systems Design Rhapsody - Model Manager 7.0.2 and 7.0.3 could allow a remote attacker to bypass security restrictions, caused by a race condition. By sending a specially crafted request, an attacker could exploit this vulnerability to remotely execute code. | [email protected] | 9.8 | 0.84% | 2024-11-22 | 2026-06-17 |