A vulnerability was found in IBM Engineering Lifecycle Management . It has been classified as problematic . Impacted is an unknown function. This manipulation causes xml external entity reference. This vulnerability is registered as CVE-2026-3603 . Remote exploitation of the attack is possible. No exploit is available. Upgrading the affected component is recommended.