CVE-2006-7241

Currently unrated

Key Information:

Vendor: IBM
Status: Filenet P8 Application Engine
Vendor: CVE Published:; 20 September 2010

Summary

The Image Viewer component in IBM FileNet P8 Application Engine (P8AE) 3.5.1 before 3.5.1-002 removes a user from an ACL when the user is denied all permissions for an annotation, which might allow remote authenticated users to bypass intended access restrictions in opportunistic circumstances.

References

http://download2.boulder.ibm.com/sar/CMA/IMA/00yrk/0/read...

x_refsource_CONFIRM

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Sep 20, 2010