Design/Logic Flaw

2011-05-2616:55:00

PRIOn knowledge base

www.prio-n.com

6.6 Medium

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

32.0%

JSON

The authoring tool in IBM Web Content Manager (WCM) 6.1.5, and 7.0.0.1 before CF003, allows remote authenticated users to bypass intended access restrictions on draft creation by leveraging certain resource editor privileges.

CPENameOperatorVersion
web_content_managereq7.0.1 cf2
web_content_managereq6.1.5

CPE	Name	Operator	Version
	web_content_manager	eq	7.0.1 cf2
	web_content_manager	eq	6.1.5

References

www-01.ibm.com/support/docview.wss?uid=swg1PM26755

www.ibm.com/support/docview.wss?uid=swg24029452