Access Control Vulnerability in IBM Web Content Manager Tool
CVE-2010-4806

Currently unrated

Key Information:

Vendor: IBM
Status: Web Content Manager
Vendor: CVE Published:; 26 May 2011

What is CVE-2010-4806?

The authoring tool in IBM Web Content Manager allows remote authenticated users to circumvent intended restrictions on draft creation. This exploitation is possible by leveraging certain privileges associated with resource editing. Users with access to the editor can initiate the creation of drafts without the appropriate clearance, potentially leading to unauthorized content modifications.

References

http://www-01.ibm.com/support/docview.wss?uid=swg1PM26755

vendor-advisoryx_refsource_AIXAPAR

http://www.ibm.com/support/docview.wss?uid=swg24029452

x_refsource_CONFIRM

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
May 26, 2011