Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The Outlook Extension in IBM Content Collector 4.0.0.x before 4.0.0.0-ICC-OE-IF004 allows local users to bypass the intended Reviewer privilege requirement and read e-mail messages from an arbitrary mailbox by invoking the Search function.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
IBM Content Collector Outlook Extension 权限许可和访问控制漏洞
Vulnerability Description
IBM Content Collector Outlook Extension是美国IBM公司的一套电子邮件归档解决方案。该方案支持自定义策略收集和归档消息、管理同一系统的法律证据保留和记录保留等。 IBM Content Collector 4.0.0.0-ICC-OE-IF004之前4.0.0.x版本的Outlook Extension中存在安全漏洞。本地攻击者可通过调用‘Search’函数利用该漏洞绕过既定的Reviewer权限需求,读取任意邮箱中的邮件信息。
CVSS Information
N/A
Vulnerability Type
N/A