Access Control Vulnerability in IBM FileNet P8 Application Engine
CVE-2006-7242

Currently unrated

Key Information:

Vendor: WordPress
Status: Filenet P8 Application Engine
Vendor: CVE Published:; 20 September 2010

Summary

The Workplace component in IBM FileNet P8 Application Engine prior to version 3.5.1-001 is susceptible to an access control issue. This vulnerability arises because the application does not validate the presence of the AE Administrator role when modifications are made to Site Preferences. As a result, remote authenticated users may exploit this weakness to bypass access restrictions, potentially leading to unauthorized configuration changes.

References

http://download2.boulder.ibm.com/sar/CMA/IMA/00yrk/0/read...

x_refsource_CONFIRM

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Sep 20, 2010