Vulnerability in Ibm Web_content_manager

CVE-2010-4806

The authoring tool in IBM Web Content Manager (WCM) 6.1.5, and 7.0.0.1 before CF003, allows remote authenticated users to bypass intended access restrictions on draft creation by leveraging certain resource editor privileges.

EPSS: 0.001 (30.7th percentile) — read the EPSS interpretation.

Affected products

Ibm Web_content_manager — versions 6.1.5, 7.0.01
N/a — versions n/a

Weakness classification (CWE)

CWE-264

References

PM26755 (vendor-advisory, x_refsource_AIXAPAR)
cve@mitre.org (x_refsource_CONFIRM)