CVE-2008-4581

Sažetak

The Editor in IBM ENOVIA SmarTeam 5 before release 18 SP5, and release 19 before SP01, allows remote authenticated users to bypass intended access restrictions and read Document objects via the Workflow Process (aka Flow Process) view.

Reference

http://secunia.com/advisories/32105
http://www.securityfocus.com/bid/31748
http://www-01.ibm.com/support/docview.wss?uid=swg27012567&aid=1
http://www-1.ibm.com/support/docview.wss?uid=swg1HD71425
https://exchange.xforce.ibmcloud.com/vulnerabilities/45943

CVSS

Base:	4.0
Impact:	2.9
Exploitability:	8.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	SINGLE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	NONE	NONE

CVSS vektor

AV:N/AC:L/Au:S/C:P/I:N/A:N

Zadnje važnije ažuriranje

08-08-2017 - 01:32

Objavljeno

15-10-2008 - 20:08