What is GHSA-cxh9-m8x4-52q5?

GHSA-cxh9-m8x4-52q5 is a security advisory published by GitHub Security Advisories with Critical severity. IBM Engineering Lifecycle Management 7.0.3, 7.1.0, and 7.2.0 could allow an unauthenticated...

Which CVE IDs does GHSA-cxh9-m8x4-52q5 cover?

GHSA-cxh9-m8x4-52q5 covers the following CVE IDs: CVE-2026-3660. Each CVE has its own detail page on EchelonGraph Pulse with the synthesized EG score.

What is the CVSS v3 score of GHSA-cxh9-m8x4-52q5?

GHSA-cxh9-m8x4-52q5 has a CVSS v3 base score of 9.8, published by GitHub Security Advisories.

GHSA-cxh9-m8x4-52q5CriticalCVSS 9.8

IBM Engineering Lifecycle Management 7.0.3, 7.1.0, and 7.2.0 could allow an unauthenticated...

Vendor

GitHub Security Advisories

Published

May 26, 2026

Last Modified

May 26, 2026

🔗 CVE IDs covered (1)

CVE-2026-3660 →

📋 Description

IBM Engineering Lifecycle Management 7.0.3, 7.1.0, and 7.2.0 could allow an unauthenticated remote attacker to update server property files that would allow them to gain unauthorized access to the application.

🔗 References (3)

https://nvd.nist.gov/vuln/detail/CVE-2026-3660
https://www.ibm.com/support/pages/node/7274079
https://github.com/advisories/GHSA-cxh9-m8x4-52q5