CVE-2010-4806

The authoring tool in IBM Web Content Manager (WCM) 6.1.5, and 7.0.0.1 before CF003, allows remote authenticated users to bypass intended access restrictions on draft creation by leveraging certain resource editor privileges.

Published: May 26, 2011
Updated: Apr 13, 2023
CVE: CVE-2010-4806
Severity: Low
Exploit:

CVSS v2:

Severity: Low
Score: 4
AV:N/AC:L/Au:S/C:N/I:P/A:N

CWEs:

CWE-264

Affected Software
References

Software	From	Fixed in
ibm / web_content_manager	7.0.01-cf002	7.0.01-cf002.x
ibm / web_content_manager	6.1.5	6.1.5.x

http://www-01.ibm.com/support/docview.wss?uid=swg1PM26755
http://www.ibm.com/support/docview.wss?uid=swg24029452

Vulnerability Database

290,206

CVE-2010-4806