5

CVE-2011-1046

EPSS 0.35%
Veröffentlicht 21.02.2011 18:00:01
Zuletzt bearbeitet 11.04.2025 00:51:21
Quelle cve@mitre.org
Teams Watchlist Login
Unerledigt Login

IBM FileNet P8 Content Engine (aka P8CE) 4.0.1 through 5.0.0, as used in FileNet P8 Content Manager (CM) and FileNet P8 Business Process Manager (BPM), does not require the PRIVILEGED_WRITE access role for all intended Object Store modifications, which allows remote attackers to change a privileged property of an object via unspecified vectors.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 8

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Ibm ≫ Filenet P8 Content Engine Version4.0.1

Ibm ≫ Filenet P8 Content Engine Version4.0.1.10

Ibm ≫ Filenet P8 Content Engine Version4.0.1.11

Ibm ≫ Filenet P8 Content Engine Version4.0.1.12

Ibm ≫ Filenet P8 Content Engine Version4.0.1.13

Ibm ≫ Filenet P8 Content Engine Version4.5.0

Ibm ≫ Filenet P8 Content Engine Version4.5.0.2

Ibm ≫ Filenet P8 Content Engine Version4.5.1.3

Ibm ≫ Filenet P8 Content Engine Version4.5.1.4

Ibm ≫ Filenet P8 Content Engine Version4.5.1.5

Ibm ≫ Filenet P8 Content Engine Version4.5.1.6

Ibm ≫ Filenet P8 Content Engine Version5.0.0

Ibm ≫ Filenet P8 Business Process Manager

Ibm ≫ Filenet P8 Content Manager

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.35%	0.543

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	5	10	2.9	AV:N/AC:L/Au:N/C:N/I:P/A:N

http://secunia.com/advisories/43347

Vendor Advisory

http://www-01.ibm.com/support/docview.wss?uid=swg21462438

http://www.securityfocus.com/bid/46432

http://www.vupen.com/english/advisories/2011/0423

Vendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/65448

https://nvd.nist.gov/vuln/detail/CVE-2011-1046

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2011-1046

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2011-1046

EUVD