CVE-2010-3473

Open redirect vulnerability in the Workplace (aka WP) component in IBM FileNet P8 Application Engine (P8AE) 3.5.1 before 3.5.1-021 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors.

Published: Sep 20, 2010
Updated: Nov 9, 2025
CVE: CVE-2010-3473
Severity: Medium
Exploit:

CVSS v2:

Severity: Medium
Score: 5.8
AV:N/AC:M/Au:N/C:P/I:P/A:N

CWEs:

CWE-20

Affected Software
References

Software	From	Fixed in
ibm / filenet_p8_application_engine	3.5.1-009	3.5.1-009.x
ibm / filenet_p8_application_engine	3.5.1-011	3.5.1-011.x
ibm / filenet_p8_application_engine	3.5.1-005	3.5.1-005.x
ibm / filenet_p8_application_engine	3.5.1-014	3.5.1-014.x
ibm / filenet_p8_application_engine	3.5.1-006	3.5.1-006.x
ibm / filenet_p8_application_engine	3.5.1-013	3.5.1-013.x
ibm / filenet_p8_application_engine	3.5.1-016	3.5.1-016.x
ibm / filenet_p8_application_engine	3.5.1-004	3.5.1-004.x
ibm / filenet_p8_application_engine	3.5.1	3.5.1.x
ibm / filenet_p8_application_engine	3.5.1-018	3.5.1-018.x
ibm / filenet_p8_application_engine	3.5.1-019	3.5.1-019.x
ibm / filenet_p8_application_engine	3.5.1-007	3.5.1-007.x
ibm / filenet_p8_application_engine	3.5.1-001	3.5.1-001.x
ibm / filenet_p8_application_engine	3.5.1-012	3.5.1-012.x
ibm / filenet_p8_application_engine	3.5.1-015	3.5.1-015.x
ibm / filenet_p8_application_engine	3.5.1-010	3.5.1-010.x
ibm / filenet_p8_application_engine	3.5.1-002	3.5.1-002.x
ibm / filenet_p8_application_engine	3.5.1-008	3.5.1-008.x
ibm / filenet_p8_application_engine	3.5.1-020	3.5.1-020.x
ibm / filenet_p8_application_engine	3.5.1-003	3.5.1-003.x
ibm / filenet_p8_application_engine	3.5.1-017	3.5.1-017.x

Vulnerability Database

319,195

CVE-2010-3473

Deep Security Visibility Without the Complexity