CVE-2023-47716
MEDIUMIBM CP4BA - Filenet Content Manager 5.5.8.0, 5.5.10.0, 5.5.11.0 - Incorrect Authorization
Title source: llmDescription
IBM CP4BA - Filenet Content Manager Component 5.5.8.0, 5.5.10.0, and 5.5.11.0 could allow a user to gain the privileges of another user under unusual circumstances. IBM X-Force ID: 271656.
References (2)
Core 2
Core References
Vendor Advisory vendor-advisory
https://www.ibm.com/support/pages/node/7078780
Vendor Advisory vdb-entry
https://exchange.xforce.ibmcloud.com/vulnerabilities/271656
Scores
CVSS v3
6.3
EPSS
0.0002
EPSS Percentile
7.2%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
partial
Details
CWE
CWE-863
Status
published
Products (5)
ibm/cp4ba_-_filenet_content_manager
21.0.3
ibm/cp4ba_-_filenet_content_manager
23.0.1
ibm/filenet_content_manager
5.5.8
ibm/filenet_content_manager
5.5.10
ibm/filenet_content_manager
5.5.11
Published
Mar 01, 2024
Tracked Since
Feb 18, 2026