Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The Workplace (aka WP) component in IBM FileNet P8 Application Engine (P8AE) 3.5.1 before 3.5.1-019 and 4.0.2.x before 4.0.2.7-P8AE-FP007, in certain FileTracker configurations, does not apply a security policy to the first document added during a session, which might allow remote attackers to bypass intended access restrictions via unspecified vectors.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
IBM FileNet P8 Application Engine Workplace组件权限许可和访问控制漏洞
Vulnerability Description
Application Engine(AE) 是 FileNet P8 平台的三大引擎之一,AE 做为用户和 CE, PE server 的桥梁,为 FileNet P8 实现内容和流程管理。 IBM FileNet P8 Application Engine (P8AE) 3.5.1-019之前的3.5.1版本和4.0.2.7-P8AE-FP007之前的4.0.2.x版本中的Workplace(又名WP)组件在某种FileTracker配置下,不能向会话中的第一个文档添加应用安全策略。远程攻击者可以借助
CVSS Information
N/A
Vulnerability Type
N/A