5

CVE-2011-1046

EPSS 0.35%
Published 21.02.2011 18:00:01
Last modified 11.04.2025 00:51:21
Source cve@mitre.org
Teams watchlist Login
Open Login

IBM FileNet P8 Content Engine (aka P8CE) 4.0.1 through 5.0.0, as used in FileNet P8 Content Manager (CM) and FileNet P8 Business Process Manager (BPM), does not require the PRIVILEGED_WRITE access role for all intended Object Store modifications, which allows remote attackers to change a privileged property of an object via unspecified vectors.

Affected products Warnungen 0 Metrics 2 CWE 0 References 8

Data is provided by the National Vulnerability Database (NVD)

Ibm ≫ Filenet P8 Content Engine Version4.0.1

Ibm ≫ Filenet P8 Content Engine Version4.0.1.10

Ibm ≫ Filenet P8 Content Engine Version4.0.1.11

Ibm ≫ Filenet P8 Content Engine Version4.0.1.12

Ibm ≫ Filenet P8 Content Engine Version4.0.1.13

Ibm ≫ Filenet P8 Content Engine Version4.5.0

Ibm ≫ Filenet P8 Content Engine Version4.5.0.2

Ibm ≫ Filenet P8 Content Engine Version4.5.1.3

Ibm ≫ Filenet P8 Content Engine Version4.5.1.4

Ibm ≫ Filenet P8 Content Engine Version4.5.1.5

Ibm ≫ Filenet P8 Content Engine Version4.5.1.6

Ibm ≫ Filenet P8 Content Engine Version5.0.0

Ibm ≫ Filenet P8 Business Process Manager

Ibm ≫ Filenet P8 Content Manager

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.35%	0.543

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	5	10	2.9	AV:N/AC:L/Au:N/C:N/I:P/A:N

http://secunia.com/advisories/43347

Vendor Advisory

http://www-01.ibm.com/support/docview.wss?uid=swg21462438

http://www.securityfocus.com/bid/46432

http://www.vupen.com/english/advisories/2011/0423

Vendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/65448

https://nvd.nist.gov/vuln/detail/CVE-2011-1046

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2011-1046

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2011-1046

EUVD