Lucene search

[email protected]CVE-2010-2518

HistoryJun 30, 2010 - 6:30 p.m.

CVE-2010-2518

2010-06-3018:30:01

CWE-264

[email protected]

web.nvd.nist.gov

cve-2010-2518

vulnerability

p8 content engine

p8ce

p8 content search engine

p8cse

ibm filenet

remote attackers

privileges

nvd

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

6.9 Medium

AI Score

Confidence

Low

0.01 Low

EPSS

Percentile

83.5%

JSON

Unspecified vulnerability in the P8 Content Engine (P8CE) 4.5.1 before FP3 and the P8 Content Search Engine (P8CSE) before 4.5.0 FP3 and 4.5.1 before FP1, as used in IBM FileNet P8 Content Manager (CM) and FileNet P8 Business Process Manager (BPM), allows remote attackers to gain privileges via unknown vectors. NOTE: some of these details are obtained from third party information.

Affected configurations

NVD

Node

ibmp8_content_engineMatch4.5.1

ibmp8_content_engineMatch4.5.1.1

ibmp8_content_engineMatch4.5.1.2

AND

ibmfilenet_p8_business_process_manager

ibmfilenet_p8_content_manager

Node

ibmfilenet_p8_business_process_manager

ibmfilenet_p8_content_manager

AND

ibmp8_content_search_engineMatch4.5.0

ibmp8_content_search_engineMatch4.5.0.1

ibmp8_content_search_engineMatch4.5.0.2

ibmp8_content_search_engineMatch4.5.1

CPENameOperatorVersion
ibm:p8_content_engineibm p8 content engineeq4.5.1
ibm:p8_content_engineibm p8 content engineeq4.5.1.1
ibm:p8_content_engineibm p8 content engineeq4.5.1.2

CPE	Name	Operator	Version
ibm:p8_content_engine	ibm p8 content engine	eq	4.5.1
ibm:p8_content_engine	ibm p8 content engine	eq	4.5.1.1
ibm:p8_content_engine	ibm p8 content engine	eq	4.5.1.2

References

secunia.com/advisories/40413

www-01.ibm.com/support/docview.wss?uid=swg21438487

www.osvdb.org/65804

www.securityfocus.com/bid/41177

www.vupen.com/english/advisories/2010/1616

exchange.xforce.ibmcloud.com/vulnerabilities/59792

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

6.9 Medium

AI Score

Confidence

Low

0.01 Low

EPSS

Percentile

83.5%

JSON

Related for CVE-2010-2518

nvd1 cvelist1 prion1