Access Bypass Vulnerability in IBM ENOVIA SmarTeam Allows Unauthorized Document Access
CVE-2008-4581

Currently unrated

Key Information:

Vendor: IBM
Status: Enovia Smarteam
Vendor: CVE Published:; 15 October 2008

Summary

The Editor component of IBM ENOVIA SmarTeam versions prior to 18 SP5 and release 19 before SP01 is susceptible to an access bypass vulnerability. This flaw allows remote authenticated users to circumvent intended access controls, enabling them to view Document objects via the Workflow Process interface. Such unauthorized access poses significant risks to data security, as sensitive document information may be compromised.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/45943

vdb-entryx_refsource_XF

http://www-1.ibm.com/support/docview.wss?uid=swg1HD71425

vendor-advisoryx_refsource_AIXAPAR

http://www-01.ibm.com/support/docview.wss?uid=swg27012567...

x_refsource_CONFIRM

Timeline

Vulnerability published
Oct 15, 2008
Vulnerability Reserved
Oct 15, 2008